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Abstract of JP9006232 

PURPOSE: To provide a system which 
enables ciphering and deciphering to be 
carried out with efficiency without a program 
being falsified. 

CONSTITUTION: Enciphered 
enciphering/deciphering processing programs 
Pr1, Pr2,... are transmitted from an information 
processing device to an IC card by an initial 
program IP when a password agrees, the IC 
card deciphers these programs with a 
deciphering key of a rightful user and sends 
them back. An information processing device 
disposes these programs in a work memory 
area PA, causes them to get started and 
carried out data enciphering/deciphering 
processing. Accordingly, these programs, 
being normally in an enciphered condition, are 
neither analized nor falsified by a third party. 
After the rightful user has completed data 
processing, the deciphered plain programs are 
erased so as not to leave room for the plain 
programs surviving after the processing, and 
security of these programs is thereby assured. 
Enciphering work can be carried out with 
efficiency without a need for work of taking a 
storage medium of these programs out of a 
deposit place and setting it in the information 
processing device. 
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#Sf9-6232 



MfETo^ASr. fiffltfc«JW5* 1 HHflSiK J: 
flHEro^ABtaj^BKcJ: 0 Steffi Sn?t«lffira^ 

m&&k. 

mz?'vr7J±mM^mzx^imMiy : -?cr>sgnik 

cit^3i2] sets 
mm&k „ 

mmm^w&mzx m^-it s fifciutBSB 2 vg^im 

t LTl|3S$ixT^-5»it^2fBm^Bf^k^X7 i A. 
[ff*Jl4] mAE^-o^A**. ^2Bf-^-ftJi^^s:^ 

x^ttb&mim l^s^-rtiMztmcD^^^r- 

A. 

[ft^JS5] **^at, twawwcfltos 

Br Lfc 0 •* h £ fc *^TSg^r#«^l«fc *^^r 0 . 
ffitE*#S|ga*. UErn^5Aie^fbK«¥«, huIB 

mmmm&tK mmm^zttm-tzm&imz^m 
js i lamoFt^-fL^x^A. 

ztimtttemmzttLxm^mziimizmffiLti k>w 
friB*f*^s*^ HuiETaj/^AHi^-fkiB^a. mrie 

rn^^A^ai^g. wffBTn^^Aa^t^S, MIB 
rn^5A®»#g v iJilXMIB7-a^5AM*#S* 

mfiB#JaJIS*>\ 1STBBS3 Bf^K«*Sa«W* k fc *> 
fc» »IE«iWb¥S**i*lll^3lE«WBi^fl:>' 



Br tfe o-r s £ k imm%ttmm.w.kfrL>% o . 
irae**e«a*s iwern^ABi^iaEWS. mriB 

WIEJg3l^-^fb&2:fE'f&-r&i: 4: ttc. TnffEro^A 

m-f-^stj .t tmiBiSHfrf-fb^asrffli. s m$m s ib 

IBtrr -l.»*JS 6 i ?t (i 7 IE«coBf^-ft; v-Xx A . 

nsvsm&w&wk ztifzm&iz, nm-t^'wm^- 

H Srfflv . fifiEffl^klt* fclitweas 3 

<rfc&££j£^&lt#3S 5 - 7 cot ^-m*HCIB»OBf^-fk 

tiiw&si 1 1 yt3^Mzm^<m.^mmizx K>m 
mtr—? srfa^-fk-r^ffi-f-fk^xT-A{ct>v%T . 

o B§#^ t fzvmx-n&t&yn y^s&HkMm^m 

k. 

MIETay^AHf^-fklElt^ap'q*^. ^ffl*tcMJ55-r 
&m 1 Bf^-fklttcT Bf ^C^ix^mrlErD^^ ASrg?^ 
tb-r^o^5ABgffi#ai:. 

MIBra^^ABEffi^SlcJ: O^aj^^luiE^a^ 

miyxoy^^m^t^mz z Ktmsfcztuz-fflz-r* 
77j*zmmzit$>zkiz£K). Bf^-fbv--^srm2fa 
mm^zxm.^it^xumt^r-^k'thyay^M. 
im^&k. 

mmyv?7Mm)^mzxm^ik7-?wmv)^ 
r-t&k. m.mt^ixximm^k^tzmuyxiy^ 

zffi2.t:c\kzmmk-r&mw<ik : ~sx'ri>. 

2] St. 

mrlBBf^^x- ^ t * * ft Bf^-f k$ n/clg 2 tf« 

WBr o ■? h z k amm^nmms k& 
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JS 1 1 tBKoaf-fbi'Xx A . 

WBf L/c K) ~th £ k #**T«g3:ttJg§slMk 9 . 

WIEfMBSBa*. «BBffiffl#tdktiW-4a-^b«*iEtt 
-TS k k «> (c. ItBMEfftfSm SIS^JS 1 2 IB 

ssoa-sHb^x^A. 

Hira&Sl 5] £<a#tt««kl;WMflcfc:ai 
^$iXHtiiB*#^IM(c^tTfi#Wtcffi.«tc«i^L^ 0 

«m Ltz k> -r 5 i t w*rm%nmsmt 

a*ft#»&»*. tmern 1 2 iBM^a^-fb^xx a. 
[it*^i 6] «r8Eft«RiK*«. MiBa^biis-ttgfie 

«ra3-H*ffl^3tawtcr. mriEa-f-fb^Sr^^s 
n-i5w ^-rnAHcia^oa^-fb^x^ a . 

*«SB*ifirt-*ii*5B 1 1-1 6tm<r>m.^\:i'*7- 

A. 

HWBI 1 8 J M&B 1 ~ 1 0 <th ^-Tix*-IB©OBi^b 

^^fA t mim. n~i7 lemoa-f-fb^x^A k a* 

[ft*«l 9] B?IBBf^-fbx-^^jimiUlil^^-LTffi 
0 ] BufBBf^'fbx-^^afillllS&^LTS 

fi^^fi^g^fisi-sw^jsi i~i 7<7Hvr*u&>tB 
^a-^-fb^x^A. 

c»*jI2 1 ] m^mi giB^Bf^-fbvxxAttt* 

JS2 OlBtt^a-^-fb^T-Ai:*^^$ixT^§Wfg 
i&EIfiv-Xr-A. 

[000 13 

[ lt^±<7)f Offl^-if 3 #?&Bjil2 , < Bff 



'fb-Ti.a^b^x^A. jeci<t4>^>«8B*^r&w« 

[0002] 

[##<0&ffi] tf|g ( rf-^j Hfo. ) 1*1 

ttrnzm^z^b Afswrnrnx-z *«jikcbw-£ kja-e 

fcvvftAfc: b ~>XlZ%cr>timcr>fo?g.*fmi,z^& Zbtf 
[00033 L*>L. fft^-fb^^a^-ftJI ( WF. r Bf 

A^«$8a<jBSS£*rcLS?.rka^ ^tfOBt/a^b 
sttc^fLTi,. s«coBt^bgtt=TBf^bLT#«ir&£ 

k *c J: O^ttSr 577^f /Hr* i'Jf< S^x^A 
a*S*3*i/0** <*SHPP6-1 0 282 2#&«) . 
[0004] 

^fACfcv^t,, <£<Oj;33:|3Jg#3q£L*:. 

fsmt. —msmziz, ay^^-^^^T-^m^^m 
mmmmwizx. m^itm-?? ^fo&wm&itrv 
(jtf. r Bf^-fb • a^brn^^A j k lt* 

[0005] Znm^it • ftfft7n^5AfcJ: 0 , « 

a-f-fbUfCBf^^bL^*^. -m. -e<^f«af«ia 
<b • a-^-fbSrffoBt^-fb ■ a-*Hbrn^Agflcfi. « 

\t ■ a-f-fbra^5Ac7)T^rfUXA*>'mH^J: 0» 

[0006]^, »Et*\ -eoBt^-fb - a^b^-o 

S&H##&oT^SBWb«fc:-c Bf^-^b-r 5 «86&f«ni 
•T-g. £ k lei 0 . *co&. Bf^(bStLfcflHB*^T* 

LT d 5§ixt>S>l» . 56t;. Bf ^Mt ■ 
-fbra^5Ai*jtc. ■JWW*W«>T3CWII (B&^-fb§ 

[0007] turn, m-^-fb • a^-fbTa^^A^ffifflL 
=Sfv^*s-fc:«» B§^~fb • ®ft<k7uy?j±*mmz$m 

W§Br*»<5.SX 0 iii LT . mrnHm^Miz^ y h LTBf^- 
-fb • a-^-fbro^5A2rn-h-ri>«ia$:^^r<Tii 
=5:^#. Hf-f-fb • «*ffc«Sl>W»*Wf=fTP -k*^T'^ 
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[0 0 08] *^QJ{4. JS=#teiaMS*l& 
A^Bf-^-fC • «#ffc£3WW(cff3 Z b #T'# SBf-^b 

[0009] 

[sua****-* fc*>*>#a ] if i imoftpnn . 

*f-ft3 huI era ^7 A fcK»a-rrn 5 Ag£tfc^ 
0. nfr^f fcSMR-r - ? £SB 2 Bf^"fb£iK T flHHfc § -tfrT 

*? A^t&^tr Bt^-fbrt^x- * ^Bf^c^T-r & 

[0010] W^2iE»<0»!Stt* Stc, BufB!S2Bi 

ttzm&iM i iatioBf^-fbv-xxAT*) a . 
[ooii] M##3ffitt*>»i$jtf. Hfrten#ip¥a 

2 isii^Bf^-fti^^T-A-cfe & . m&g 4 ia«Ec7)^Hj 

«s Wtara^^A^. ^2Bg^-fbaSr?H»^T^I) 

m&£ 1 ~ 3 <n\ ^-m^^iea^Bt^-fb^^x A-cfc 

[0012] »*315SE«<0«HJ«. *f*3§Sfc . -I?) 

**B6»fc {iS'J«stc«i^$ixHtne*^gic^ vx 

Saifc3&»6**). MfB*ti^S#. liafETn^ABi^- 

4fcE«¥gL mrfB^o^A^ama. twero^A 

fc«J:lX1JiBra^7Am*¥S$-m. MIS 

i£««oBf^-fb^x^At'S>-i> . 
[0013] m^.^etmcowm. *M£mt , 

i«fc*»4>*"5, we*****^ mriera^^ABf^- 
-fbie«#®. Huie^o^^Asgai^g. wKTn^A 
a-§-fb#a. iiiriero^AjgRjifi^ tJitxMisro 
^vA?ft'*^gsr(ix. mrie#s^s^\ Miem3Bf^ 



«JI 3 taKOBf^-fb^XT- AT& 4 . 
[0014] SW8!l7Satt<^)fMBtt. #tt§£«t . CIO 

3eKfc*»6$r9, ME#f*3§«*>\ UR7n/5AW 

flseflBHS* mriero^^ASgiij^s. Miera^^A 

<b#a*5 it/mriSMBf #-fb#asrfiii. i»a*Ji3iB»^ 
[0015] mtqi8RM0!>9ns«. mefljraafc& t , 
tttmttzvxht Lxam-z mem. 6 1 i §m 

mm<mitf > wEa^-nji* fctt«BE» 3 >**(&itM& 

^5 — 7 ^V^-m*HClSmtfOBf-f-fb^T-AT'S>S . 

[0016] it^iii oiBSSo^Hgti, Huiem^A 

[0017] if^Ji 1 1 imnftpm. 7n/7^i:s 
-^<a#-fb«M^«fc OBf^-fbx-^Sra-f-fb-r-sa^b 

^XxA^t5V.T. Twieru^AS-. <sWH#^*fliE-r 
1 Bf^-ftJIt i 0 iflHWfcLfcJRttTlBtWiro^ 
9AHf^fl:iB«¥«i: . Mf5^a^9ABf^-fbiBtS#© 
rt* 1 ^ , ttffl#t=«i6-r4fli i Bf-^-fbSi^-tB^HbSft 
tzmd.y-uy^^m.^^ty°uy^M,m^fkb. m 

a£. ffiffl#^jE5-r^,a-§-fbiifcj; , 9a-f-fb-r?»Ta 
^5^a-9-ffc¥«fc . miiy^y^M%mt^mzii o 
a-^-fb§fL^SfriB7-D^5A$re»i$-ar^,c: o . 
Bt^-fbx- ^ »s$ 2 a-^-fbUfcr a^ffcs *-ca%f 

^gcTBt^-fb^-^coa-^-fbs^T-f-i. i: , a-^-fbi? 

9AiH*^«k. fc**fc£fc£«pai:"r*a#fl;5'* 

[0018] If^JB 1 2fB«^Hj(i, g^c, BfriBBf^- 

-fb7 f -^^#*nsBt-f-fb§n^iB2a^bHS:, 
#t=*fiw-&a-^fbBite'ra-#fl:^stta-^fk«Sr« 
i3t»*Bi iiB«Jwa^-fb^7 i A'c*&. 

[0019] If^JS 1 3Ktt<0«^li. . i 

ttwmw. b &MMzmj&2tLm9tt#3imztt Lxm 
mmw.bfrt>%*). m9tti*mwtiK wkt-o^abi 



(5) 



#iT9-6232 



1 1 fBtfcoa-^-fci'X-r AT* § . 

[0020] at** 1 4sm<vmite. *wma.t . ^ 
•§-fkiB^*g. wiEru^ASsams. mmyay? 

4M*H1 2£tt«oa#fl;^;*7\&,T'2b&. 
[0021] ft^JS 1 5Etttf>»9ili. *f*^Kfc . i 

<n*vmw. t immzffi&z ftsif&**$sB(c*t Lxm 
#wt=ffiKt=«a t o «j»f ltz k> -r s i t imn&ft 

^tnm^&. milBro^^A^ai^g, hume^o^ 
immmstf. mimmmiztti&tzm^tt&zm&t 

[0022] ff^JS 1 6IEtttf>»JHi. mrlB#m^K 

miaa-§-ftJi^ii:t#iBiiii-r. iriBa^tJiT^^ 
x. mmmm^^t^m^mi 3-1 5*>w$*h. 

[0023] jf$£ 1 7IE»<0fMB«, BtilBT-n^^A 

*^S£0MS$r^fi : S-tti»^^*f-g»it^l 1-1 
6fBKOfS^b^X^AT'* & o 

[0024] n^K 1 stmnrnm*. mm 1 ~ 1 0 
iov^n^ia^^Bf^-fb^^kif^iai i~i 7 is 

n t h asm 1 ~ 1 0 <ov ^-rfx*>iBK<oBf^-(k^x 
xtbh. 

[0025] ff^3S2 OlB^O^HJJi:. HulBBf^^- 

ii~i 7<7)^-ra*>iB*fcoffi^b^7 i AT'fcs. m 

Atf»^3a2 OfB^oa-f-fb^XT-Ak^'M^^ixT 
[0026] 



[0027] Zco£ o ^Bj^Hf^k^x-f-AfcT 

±K>m^fc2titzvmx'%mztix^&. LWot, 
yvM%^i\:^m>mm lx i>*8wumM<vy*r? 

[0028] iE^=5:«ffl#A i x-^*lif^-ft:'r£^tc 

7°a^A^^Kj$-fr-g,„ ^c7)g»$il^1JrlEra^7 
A<o«l6fc i 0 , B£fHt*Nfc-r- ^ 2 Bf *fb>Wcr 

[002 9] L*^. f-^«lf{W%TLfcl»l 
IBIt LT v ^ Ktt«Ef4c SfiMPWSf 3&»fe K 0 HJ LT n ^ tf 

[0030] ±§mmzmz, m&wktttsxxmtt 

[0031] Zcr>£ o IZ. SrBf^-fk-r htztfxnm 

2v%mm*. mzm 3 m^imizx mmt lx\,^&<?> 
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klSS 2 Bt^-ftJ|*i#Jn§ix?, OT\ -?-c7)iB1i$Efls<7);fc * 

sra-^-nrrs-rt^T^-i.. mmvr—SHz 
mnz ixx^z ttmtzturzm 2 mmtrnzm 3 iwft 

[ 0 0 3 2 ] jet. ss2ns#-ftj|3&«. mriauf 

mmerrur^Mzk *)mmzx&sbt>tLfzi>(nx$> 

— &rm%teX'$> *) , ^LTffifflSixi. k^TiiSrWD 
T\ «k O^-^^^tt^Tlft^iX^. B# 

«^Wt=ffiW=JStt Lfc 0 «JBf L/C 0 -T $> £ i: ^fg^r 
[0034] <I<0*^ *ttiSafc&^ mflBra^7 ABf 

^fiae«#a. AFiaTo ^5 Attains, m^yuy? 
A^ifs, sitmiBrn^AM^as-ii*.. ft 

[0035] ;<7) J: a izmfct 5 i: . Bg-5Ht;£!tJS£ L^r 
V**&t£li. ^^a^^-ftS^HSrWOSILT, ^£ 
^^mtcUXJrt LTiK d fc#T'# 4 . ft JBESSKfllfc: 
«s i&m%lzttj&-?&&4§rtt,8££yv7'?<u&^t^& 

[ 0 0 3 6 3 i/s . mmiz. ^mmt nmmmt izm 
n^Are**^**.. ftsiisa*, iwrie»3BWt 

[00373COJ:? 1 , ft«8ilttfctt, 

*3Hf^tfl|4:£iBi^fl:#ai:*qf1«-ftfci6 s 



3 BS^-ffcHtJ J^SPf ^tt&mfryTuy? J±<ryg&&tf 

tz. *Mkwtnmmwtt,zm*izffif8.ztitzigr&iz. 

LLXi>&^K 

[ 0 0 3 8 3 Z<7)£ 0 tzmf&th t . ftJKBXffltCtt. 

^Zc^&tf-t^xm&zti. r-fo^mt—mm 

[0039]^ mmmmmtiK m3m^mz. 
a^ft*^^ - h fc *t js Lfc u x h t l 

TIB'S LT^T^m^. ClOioKm^SixTV^i:. 

-ttiii. tt&mwnmm^it^&wzniDt.zttmLtz 
m 3 m^fcmizxm 2 Bt^-ftJisrBf^-ft-r 4 ^ t wxz 

[ 0 0 4 0 1 *fc s fflRttB&mtf. WMmtMim 

3 Hf^-fbH SrE^IBIg^-r . a^-flJii^{im3Bf^-fk 

«»tT . a-^-ftJt* JtiiiB 3 Bf -^-ftis&^^-r h %> co 

kLXi>&\,\ mz, IR3flHHb(fe6*^»SB«L=Sr<T 
{i=2r^^rV->^-^, SIS^O^.T'^v^T'^^yoSJi^ 

[0041] ^^METa^^AA*. J5fSgB*iaUlP«ifc« 

JlSrfitLT. tufBro^^AMS^aoiiiia^ll^TS 
•^4ffil#gS:W-r-?)i.Oi:LTi,mv. ^J:^:^ 

(f, m^&wfm&i'XTAsmipb—BMtifck lt 

4 cox-m^mizmm 2 k> &m $ tut 0 -r 4 c t 

[00423 If^JS 1 1 coa-^-ft^X^Aii. rn/7 
AHf^fBEtt#gL 7-n^7A0?ai^a. 7o^5Ag 
-^fb#a. rn^9AiBB¥a*J«J:l^7*a^9A»TI*# 

7A$r. ffiffl^^JE-rs^lBf^tHtciOBf^-fEL 

ABf^^iBii^art* 1 6 , ttffl^fcw^r s is 1 Bt^-ft 

HKTBWfc£*t£OTiEro^A£B&*ajL, 70/ 
5Aa^ffc#gBi. «rE7*n^9A«ai#«fc:J:0BE» 

asiifei»iE7-n^9A*. ffiffl#^MJE-r s a-f-fEU 
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Zit&ztiziiK). emit?- ?zm2 imimiz x m 
[oo43]^c7)j;otc. ^mcom^t^^Mzx 

m^tmimmwmn-?& -r t to i o . siH^to^n 

[0044] lEiSSHfcfB^jWfcWT*-* fca^M"* 

f«7n/5Ai, teffl#to*f*5-f-&*l-f-ffcSt 
toiOa^HbU 7n/5Ai@ifStf, ZcoimtZ 

[0045] L£>*> . H%m\L^-^cr>W.mti)^-7 Lfc 
oxrn^Afciff**-*. ,r<0*:tf>. a-f««£ L*: 
kt3r<. «^bfflc^o^A<^^14#>TI£&$iv 

Lx^hummzffism i mt)>eyW*)\£vx-3i''e*.- 
wtoa^fBH^-c**. 

[0046] JJEffjfctoHto. «a-^ft*«**aniT 
fcm^. ^oiifs^-ft#s{i, Bf^-fb^-^to-t-ins 
Bt^rt$iifcm2»fcS!£ . ffiffl#to*tx5-r^a#-fb 
atoTa-^ftr* . <r 3 to-r^» £ t to <t o . a§ 

i<^*«4RKk liM#toraj£SirMB#tt§SSto** LT 
tofflRto8Stt L D flJBr Lfc 0 S £ a*riB3r 

[0048] £0%£. #tt£IS#. miiyvy? ABf 



[ 0 0 4 9 ] .1 <0± 3 tottJfc*-* fc . a#-fb*!J3£: L3: 
^*£to« s **«ar3&»feft«BlJl*«I0KLT. 

%&wmizitm Lx&<zt h . ftJKissMto 
{4. mmm^znm-i-^m^iMtyo^^m^t^m 

^#Sora^7Ao^tt3&^tolS«$ix, 

[0050] ifc. ISHBto, *ftShKi:f+««fcto3ll 
*to»j«$;hjfc*£-fc:, *f*SSH#. WE^n^AHf 

[ o o 5 l ] d<^) i d toflWW-ft . ftM&SHtott* 
fc*>, -e^a-f-fblifcJ:t/^fWb#S<7)^aj/7A<7) 

ttz. *mmkttMmwkizm«tzmf&2tiK:i% 
mriB7-o^9ABf^bieit#s. m^yay^j^m 
AM*#a*<ii.. ft«frar*«. iutaffiffl^toMjt5-f--s» 

«^ft«SrS!tWft k i: t> to, HufBTa^^ Mf&im 
[ o o 5 2 ] cod: 3 toW^-T-S k . ftS^SffllltoJi. 

mmmizMm-r sa-^-fbn, 7n/5^k#Btej: 

■sa-sHbu. ^D^5Aa^-fb#s^TD^^Afcj:t/ 
«a-f-fb^soro^5Ac7)^:it^-r^T«i«$n. 

[0053]^^, mmmzmw. m^mzmsmi 

a-Yzm^tzmmzx. m.mm*£j£t& t^fci 

•cfBH#to«wf « o gm§ tvtz o -r s i t w 

[ 0 0 5 4 ] S*:. ±.mLfz\^iXi3^COmm.<^^ri\L^ 
WdktoiOs — P^+ffSMEMSi^XirAtoT . Bf^- 
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k . &m%<o>imi)mm&]k %h k k *> tc, :ro 

[00 5 53 ft. J^LfcWHf^5'XxAfc:*JVvt v Bf 

mkr-* *mmm*it Lx^mzmm^?>mm^ 
m&D7 t -?mm>'XTj»k Lxm&t&zb&vz 

Bf-f-ffcx-* SrilflUJtSS:*}- LTSfrT *wi#s*ffll 

[0056] ±s£<^iSfi*a*w-r*i«wb^^ 

7r^y5'J i£B^ffi^f&E5ifi^Xx A fc LT 8§l£ 
[00 573 

[fisfcw 0i&j:tf02{2. ^zmwmmwm.mm^ 

«Ui^S2<7)yu-y?EI$:^-r. tiffg3M£B2J3:. C 
PU4„ ROM6, RAM8, A'./^T^rRAMl 
0. ^-#-Fl 2. ytW5n.7 ! 4*? (MOD) F9-f 
7"14, CRTf-fX7P-f 1 6, A-FfU? (H 
D) gll 8, 7D 7 t-fa; (FD) 72 
OfcilfAtBTM >?-7x^X ( I/O) 22ZMZ. 

x^&. ztit><7)ffim&'<*2 4izxmmMzffl£% 

ti. mz I /o 2 2 tcii ic*-K'j -r— 2 6 tmWi 
ZtlX^Z. 

[0 0 5 83 zcD^oiz. mwmsmw2i±?y}z° J L- 
?kvxmm.i$ti. rom6, mmcf j^fv^'i-? 

1 Alz&XZixrztltWmrr H *7 . A-Kfa?^i 
18. :7n>yh-T^x?K5^2 0fcf¥A§ix^7 

A§fL/cIC^-H30 (02 ) frt>m&-&3.tltc7°u 

r^A^-fizm^x. im%*m*m$fL. *sm 
^tfA^ft^s&^x^x?. ^-FxVx^ai 

8. 7n.yt-f-fX^H7^7'20t#A§^!t7D 
■y t r— x 4 X ? £> § V I C # - F U - 2 6 (C» A 

i c#-F3 ot=ieiw&. «««yig«2ii, 
£*ua*Mcc D-ROMK^'f ymm^m^T—yim 
mwmzffizxi>&\\ 

[0 0 5 93 02 C I OX— F 3 0CD7*o <y ?0£^ 
•f. IC*-F3 0I1 CPU32, ROM34. RA 
M3 6. /N'-y^T-yrRAM3 8fcit>'Atti*^^^- 
7x4 X (I/O) 40t«itV^. £*l6tf)«WHi 
A'X4 2tt<ifW^?^T^S„ ft. I/O40 

tt . tt«B«i$g8 2«ic*-i«y -r- 2 6 £*f ^£ 
[00603 mzffimmmm.2<7imM*>i<z& o . 0 



3 (a) IC^f ^Ti:< RAMS^TD^iXUrt:. 
x — 9 &m*Ht&£T/Wlr<kt& tctbcoJ - yt^/n 
y^J* I P*>V\-Hf^ X?^Bl 8#>£>o-F£flT 
jgffijSftS. ft. A-Kf^?gll8{:ll 123 
( b ) iZtjk-rz'k < . A -y+/l'7Dy'5A I Pj^f- 

5Aj Prl—Prn^lft^tLTV^. <rft£><7) rg£2?) 
«/«^ft*Sirny'5Aj Prl~Prnfi. #tS$8*43 
^K20ffiffl^Bf#>fbii (SSllgHHtSt) tCTBf#^ 

tfg&fcW^fiPl £W LX \ ^ To ^ 2>xh & . 

( b ) fcjj***v\— Fx X ?mW. 1 8 rt<7)^ffl# I D - 
yu7?j±T Fl-Xx— yfr&mm-t&Zklzj: Off*> 
ixl>. <rfLA,c7) r|g2<yDHf/fI^-ft^iS7°a^'5Aj P 
rl~Prnt5il/^# I D -7*0^5^7 F 7" 
/Hi. BuiH-f-^-r/U/a/^A I PttttA-Hf 

[006 1 3 IC*-H3 0W\'7?7'y7RA 

M3 8Cli, 04t^-rrfc<. A'X7-KI^7ny' 
5APrll. Bf^-^(^!!iam^5jUPrl2. W.^t%m7 
U^APrB. iiBf^-fC^rn^^APrHioiT/il 
fS#^a7-a^7APrl5^ra^5Ai:. 

IES&<i6ffl#OID. IE3&ttffl 

mcoB8/®.*H\M mi«£^i\Mis£Tsm^mizWL% 

ffl^OI D ( I Dl, ID2. I Dn) I DtC 

*ti6-r&ffl#*l»^fc«Kl, K2, -. Kn#«fE*S3*t 

[00623 ttfflw. x-^s-Bf^-ffc-r-s^t^ m 
mmggm.2£mm*yL*zi&&izi±^ msaxx/me 

coyn—^-Y—hi/ZTjk^-^—i^-YfVyuyyj^ I p#*@ 

»$fL^.. xf77s i o oizxwm^mm^m 
htt. mwnm£i& 2 iziftEtz &mm&&imvm£ 

[00 633 iXlZ, IC*-Ky-^-2 6CIC*- 

f 3 ofimmztix\,^i)*gfrfimfet*ti$> tsn 

0) . ^*$tl.TV^(-mtfXx-y7°S 1 1 OIZXIXS 
feWmZtlX. I C^-F3 0^*^*-T^^Sr 
CRTfU7l^^f 1 6Cff-5t (SI 20) . SJgX 

f77si i o^ntf-rswia^^Oig^-. 

[0064 3 IC*-H30^ IC^— FU— 2 

ei^zmm^tttiii. xf77s 1 1 oizxnfepmzti 

X. »:(:A , X7-K^g*t^* ! CRTfU71/ 
1 6l,Z%Ztl& (S 1 30) . ^cOyN'XV— FJi. 0 
4fc^L/^ IC*-H3 O^iE^^ffiffl^cOVN-XV- F 

[00653 yN°xy- F(7)A7J* id r-^- F 1 2*^=5r 
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ZtufctiP'EipifiP. ifeZti ( S 1 4 0 ) . TJjtmi-tti 

x\ xf7rsi4o, s i 5oc7>wm*wom-f. ? 

/S 1 4 OtCT1f5£W£$fVC. A*3*UteyW7— F 

3&»ic*-K3 0ffljtciaesii&. -eLT. <w=, ic 
i d t&mmztixm&<r)$:w~> ( s 1 70 > . 

[0066] l7~l8W70-f ^- hl/Z I C#— F 

3 oiii<7)j!!ias:^-r. warna 1 c#— f 3 o# 1 c# 

- F V -y- 2 6 t=S»$ftfclBfc:iB»S*L&«Si-Cft 
4. tit IS*&iIi§S 2frh?)f T7— F <DSfI#^ 

(S500) . Itfj^LfcXx'yrs l 6 0<o#ya 
tci 0 . F^'iMflSftT^tf XT-yTS 5 0 

OfcrClt-JgWgSftT. A'X7-hWD/7AP r 
11(CJ: 0, 04tC^L^>'N'-yi?r-y^RAM3 8tie'tt 
>IC7)I C#-F3 0<9IES&teffl#<y>'N°.X'7— 

f t . ffiffl&mmw. 2*>t>m t?tvfiu ^ v- f t <rm& 

tftp^iXh (S5 2 0) . 

[0067] LTv *«0{Ste<0l6«i: jES$rtS6ffl*<0 

i d t &mmmMgim2m^mmi$ti& < s 5 3 0 ) . 

f>WU7-HfcA' 7 7777RAM3 8 FACIEI! $ ft 

temmrfzco i c f 3 o *mm lx i^s ^ t&nz 
<nx\ mz*<7)iEm%mmmcov8/®.^ttm : s: . 

7 77'RAM3 8MI^tlit ( S 5 5 0 ) . &U ^N" 

S 5 4 0 »CT5J£¥!lS£$*LT . 77S5 0 0W 

[0 0 68] Xf77S 5 5 OSrMUL^^tti:. # 
fc-ff#8«raigS2*^OjMfi#fei:^rS ( S 5 6 0 ) . 

XT77530 o«ratcT . m&tmt i d t wnm& 
mmm2ss.mmzti& t % «««yisKK2firc«. x-f 

771 7 0tcT#^WSSft-C, ZMz^Ltiti^frff 
mfeZtLZ (S180) . ^BcL-CVvSrWitf. lES^r 
«ffl*-Cii*|V^T\ Xf7718 0 fct?89> JJSSft 
T, CRTfU7W 1 6tC. ^— S"C*&£i:4:«l 
SS-^ih'T.StO^SrLT ( S 1 9 0 ) . Xf7 7S 
L*:**oT, IC#— F3 0#I 
C*- K 'J-^- 2 6 CgtSilt V^K, WJK. Xf 
771 SOfcrCW?— F>&*Rfc§*U Xf7714 
0, S 1 501CT. ytx»7— HA*Wt>4:<r*. 
-YcDAJjZfflMtXb. Mm. AJjZWilb^tl&CDX' 



^ifiajx. «: 3 0* T & U Xx -y r S 1 8 0 tCT 3 HI 
B«OIBB!v*tf>*^fc:*±. xf77Sl l0tl§f, * 

[0 06 9] Xf77S 1 8 01CT. £»L 
tf%Ztl&t. CRTf-fX7l/-f 1 6fc-£gi:L*:i , <0 
SUK**5r£ft ( S 2 0 0 ) % I C#— F 3 0*»6»S 
•6«»fc*te5e«Lft: I D(c«iW«PHHKS#ufe»2 
^Hf /ft^JQJiro ^A^A-b'f^x^^tl 8 

OfE^T^/t^^LifiLT. I C#-K3 0»\j2£ 

frrs ( s 2 1 o ) . i Da^ro^A&si-r^fi. 

i3 (b) ^t^rt<. A-Kf^X^gll 8£ 
7r^f;^^TV^ffflf ID-7D/7A7KI/Xr 
-TVUfrfc, I D{C*f*5-r^Bf^'fl:$ixfcm20Bi/fI 

or H^*^KS-rsng#-(i:§ft^:m2oHi/m^ 
m&y°uy7j±*mfr\£tzbi,zx*)'fTi>ixz>. mt 

coB§ym^mmyt3^^j^Pr2tmmLx^i>zt 

[0070]»c, I C^-h'3 O^^c^Mfi^i:^ 
S(S220). IC*-H3 OffllTJi. flt$BJUi^« 

23&»6nf#-ftsitfcj(5 2 cvm/u^ttmy a p 

r2<D5Hft#£> Xf77S5 60 0^lCT#^J 
^$ftT. <^(c^-corn^7APr2<7)Sfii:-?-c7)SfiL 
7c7aj/7APr2<7)fM^tj!§a* { '5r$ftS ( S 5 7 
0) . -t&iyh. A 7 ?777RAM3 8{:W4S 
-f-Yl^iro^AP rl3$r®i&LT, fif$8#yi§lfi2 
*^SI«$ftT^ro 2 r5APr2Sra^b-rS. i^. 

mm?- miz&mb s v ^fcta-^-c* =5rv tii , 
mvxmmh&wm^itLxi,^. 
[ o o 7 1 ] mz. m^tLK&2cr>m/m^wmy° 
n77j*Pr2&mm>&mmw2'\mm-t& < s 5 s 
o) . Bf^>rt l t v i vm.^mm. 

% I D^'Sff 3ft£*>5#>jTO££ft (S590),f 
flLTvvSrl-WxJf, Bf-f-ftSft^-i^l^ftSixfe^ 
Sj&^WmffiSii* ( S 5 9 5 ) . Ztliy^mLX^if 

fttf. m^<tLx\.^\^2<nvfe/w$immyvy=7 
jxtf&mztifzfi^gfrfimfeztih (S600) . 

ftt^ftLTV^V^ti. Xf77S5 90, Xf77 
S 5 9 5 il/X^ y T S 6 0 0 9 M"? . 

[007 2] 1f$g«ia^S2{lT'(±. IC*-K301 
fS-§-Yk§il7^ ^^*>^om2cOBlr/ffl#-ft 
%my°i=>77J±Pr2Z&m-?&k. Xf77S2 2 0C 

•c-ft^NcesiiT. *<n^<nm2<F>^/m.^wm-y 

n^5APr2Sr. 02 ( a ) (CijrTr*: < R AM8«^ 
MtX*U«l«PAtC|BiM-* (S230). 

[ o o 7 3 ] ^tc. c^^m2<7)Hf/«^b«isr 
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(S24 0) . %cr>m2cr>m/m^~{mm7°V37-7£.P 
Ticr>7xi—*f~*r— h£l29H2l 2lCjjc$\ ic^JM^' 
Xf77S 2 4 O^iSiijMJICrJ: 0^fT§tll»„ 

[0074] m2<vm/m^i\$my'U7' ; yJ±Pr2cr>m 

1 6(c«^$n^» ( s i o i o ) . x-jl-i^ 
Bf#-ft^a (shoo), fi-^-fbJaa ( s 1 2 0 
0) , m2cry^y-^i\^mrruy^j^<7mmm <s 
1300) ±5 itx-e^feico^a ( s 1 4 0 0 ) r-fc-s. 
[0075] r^T, «ffl#t=J: yvg^iwm. ( s 1 1 

0 0 ) tfmsizti& t.mio izjfrtim&mtiizti 
Bt^-ft^f j -^*fe±tx«-^'fb^# 1 d 
coa^* 5 ^^^^^ ( s 1 1 0 2 ) . m\mrnrf—9 

-f -f K 7 /2 0 (: 1 7 h 7 n 7 f-f -f 
X^rttf!)7r>f^*JBsrr4ii:fc:J:0tf3. lit 

■f-ffctfttix— ^ti. 7n 7 e-f -f X^K#4tl, t« 

[0076] ztem^wmm idii m-*Ht£f**r$- 

^4^;U-7-<30 1 DSrATJ-TtUf. ^iD^-TOrJKL 

1 d x-mLAz&mm'&m t~tz> z t #-e£ § . 

[0 0 7 7] ZZX\ ?4 J»TVh>®m (SI 106) 
(S 1 1 04) . ?4 J±T*7h&X\ ATWSrtt 

*itr . xf77s 1 1 o eizxmmn^tix. m-hiz 

(^2Bf^-fk||) ^fig-fS (SI 1 0 8) . 

[0078] Z\ZX\ —vmn&jmz^ zu&mz&tch 

& i o i wmrnvwrn. LTTfiw^^oAix 
i d fc * i c a- h 3 o w^xiMfiL ( s 

1110).«fcl C^-h'3 OdlA^jUfi^ttT^^ 
■f^YtSiiJt— B*tt<05WS#^i:=flr& ( S 1 1 2 0 ) . 

[0079] ic^-K3o wtu. -mmtm^-iw 

g&lDbZ&mLtzCOX'. I80Xf 77S5 9 0C 
TltSgWgSixT . mz. — «HBPt^ft«Sl7 , o^5A 

p ri4tcj; i DK^tjcf-sffi^s-ww 

ttHK J: D-B^H^nf^-fb-rS (S610). IC*- 
b'30cOA' 7 ?777 , RAM38Wl !4C^L!tr 

ID1. ID2, -, I DnfcfWI DtCJtiM-Sffl^ 



mK2lZ£K>-#TmZmHt-f&. ttz. ^JV-ycOl 
D&XJ}ZtlX^tll$\ %<r>7')V-7<7>Vtm.t%:&%i<r> 

[0080] Sl-^J: 5 CBt^fcSfifc— 
*a*Ii£«2ffl!KiMfiL (S62 0) . IC*-H3 0t 

wwsHji^^-yrs 5 o o<7>%mizm&. mmumgm 

7S112 0KT#^JS$^T. Bf#-ft§fL7t— B#^ 
Sr. lDbbi>lzimi&mz7T'<Jl>bLXffl!rt$> 

( s i i 3 o ) . zcoummmt. i&mm&miz-t&m 

ffltmx-b &i>K z\z\ X'li . ftSSM^ ^x?K7^f7l 
4lC-b-/ h$il^fflMf-( x?T'£>-l>. Vim. yu-y 
t-f^^fc5V^A-Hf^?lI18f«fli<7) 

[0081 ] iXlzmzXT-vyS 1 1 02fCA73$^ 
T^&Bt#^«^-*#0g^aj£fc. ( S 1 1 4 0 ) % 
Bf^-ft;£ixTV*Sr^— B$St, •r^r^*>XT- xrs 110 
8X'£jS.Ztitz£3.cr>~ mmizJ: *) . Z^mmSLf 
-?tfV&%i\LZfl& ( S 1 1 5 0 ) . Zcr>£ 0%?—}? 

z&zm^xm^iwm~t&y'v?'7j*bLxte. *n 

£7)«2|IT^^UXAT'S)5DES^>. NTTftifSIL 
ft F E E LSttftl £>*1.T V . 

[0082] iJCfc. ^(WHfcSiftrtrr-**:, IDfc 

6 (SI 160) , -tKii-h. Ml 3fc^-rri:<. 's 
•vf-lg&b LT, (WtlWtM) «ID 

(1), ID(2), I D(n)k^I Dfcr*tj£L7t8iHi- 
-ffc— BM1K (1) . KC2). -, K(n)i;<OUXhS-iatt 
L. T^-^gBfcLT. -B^HtCT Bf^-fbL/t Bf^-^^- 

?£nmLfii7T'()VbLxtm-t$>. 

[0083] i o fc. tt$gMffi^M 2 ict m^-itmm 

( S 1 1 0 0 ) #»TU <S:tRAM8±t. ^J^.{f . 
Xf77S 1 HOWjIfflfctRAMS^I^t'Ji 

^cSg^ai^n^i^^Bt^-fLW^x-^tv^^, Bf 
^Sr^yrt^i ( s i 5 o o ) #fT*>*t*. 

[0084]roU.^2 <Dft/®^i\$mWi&T 

ATti: . El 6 (C^-f X T77S2 50 COMa* i: ff *>ft 

RAM8±(:#^tTV^Sg2cOBf/fI-f-fk35!iar 
n^7A2r^UTL. Xf77S 1 1 Otitis. 
[0085] ZCOJ: d IzLX, -r-^«0Bf^-fb*^T^- 

-S. ±MLfzZ'b<. *&MMer>Giwm&m2izxm 
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[0086] jE^mm^rW"?—? z^it-t&m^z 

m^tmizTm^fcztitzmiZTvr? ^zmx-m u 

i: j; 0 . m^imm?-? vm < m 2 m^ntst ) 
[0087] t&i> . ^-fnm^-ittf&T Ltzmt. 

tftS: UK T fell < . SMM«ifc:i«ff^fkfR(t**"C& £ . 

[0088] 

i^M^VV JEC -B#gl (Sfl2Bfr5Htit) a, 
ffi^Bf^-fUi <SS3Bfr*fl;«) t=-C«HHtS*L«. * 

[0 089] ZcDXdiz^ ?—?£B£mtt&t<z#)CD~ 

mm (^2Bf^^n) k^^u (JS3H§ 

£1 (§fS2Bf^f(Jt) *f«niU-c*JV^Tt3!c^iiW«T& 

tozti&<vx\ * <7)tmt&w < z z -camtsnf j x 

ftffl#ftfcT. ffi^^Bf^fctt (£3Bf*fttK) Sift 
[0 0 90] -B#it <ff52Bg-5Htgt) (i. mrfSBf^-fbffl 

TOlEBW^tfxrn^A 
l*lT-«m§itTV^C:i:7&^. Bf^-fbtn.a^I^{i s ^ 
«07n ^7 A JiBf-SHL $ tltc i> LT V \& (7) 

mm.2 timmzffif&xixmmwmu2izttLTm-^ 



i£Sfc LT^)IC^-K3 0tfcS'JixT«^Six. Lj6» 

Wf83?aa^S2*>\ T-a^^ABi^-ftieii^as, r 
(^3Bf^-ftJi) fcietw-ifcfcfcfc:. ro^y^fi-^- 

tZtlX^Z. -t^io. I C^-K3 0{ffilfc(i. 
<rM/\%^\m>. ffl#:WHtlt (^3Bf^-ftJ|) , 7° 
[0092]<XC. 01 3tC^L^B^f-fb7-'-^7r-f 

eec7)IC^-K302rIC^-h-»J-^-26t 

•fe y h-r&. 

[0093] W$8«Siljg2T(i, ^^-r;l/7°c?^7 

Aisgusns. zcom^comma. ^t^rs 100 

i'^fyrs 2 4 0 4T'(i. ^-^Bf^^^fciMBB 
t^fflOT-fc-S. I C^-h'3 0(cfcV^Tt|5]«T'S) 
•S. mk. ttflMhWIWrfaf. I C^-H3 0tM=5:^ 
^fcK. Xf77*S 1 7 0tTS^rr-S I Dta=2r 

0. xf7rs2 1 oct 1 ex—}* 30 s^mmzixh 

[0094] «^jf , mmmco 1 d*-* i Da-rfcnw , 
m^it t$tifzm2 cvB§/m.^mmy°n77 a p r \tm 
mLx\,^zbfrt>. m^ikztitcm2cr>Bg/m*§-tm 
arn/7APri#, 1 c^-K3o^ft$n.. ^-o 

a. $&2<7)B§/m^<mm-rv7?j±Prirfmffzn 
h« zzx-it. m2com/m^mmy'v?'72±p 
rmm2<vm/m^mmy°x377j*Pr2tmtft®x' 

[009 5] xf7rs24 oizxm 2 cr>m^m\M 

irn/7APrW5gi|ga^i:. 4^. I9t*t7 
n— f-^r— hCOX^-yTS 1 0 1 0CT> ^S^— a— 

^^k*^ . z z x-mmmtfrn^wmzmiRt 

ht. Xf77S 12 0 0<r)^mifim^ix^. zcom 

minimi l^n-f^-M^t. 
[ o o 9 6 ] t-r. wvm^rf-^^x-n<rm^.tm 

*k2tl& (SI 202) . mzX^yySl 2 0 6tCT 

^-r j^T^y-tm^tt^x^^xti^-h (S120 
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4) £3:4. \-Wfi%1*tvf{Z94 AT^hfcStflfefX 
T77S 1 2 0 6tCT#^J^S^T. S52«OBS/«# 

[0 0 9 7] 7ftgm7WX? KiMn 4fc-fe-y h$*X 

Lxi>&^. ) , xt»7s i 2 0 4i,z-cmzmmzti 
x . -e cr>mmm^cov^i\L^- ? ^ « y ^-g& i 9 a 
i d (i) , i d (2) , ■ itx^-rs at-^-ft: 

§ix*:-Bf£iK (1) , K(2), -Zmx-ft-? (S 1 2 0 
8) . 

[00 98] JKte£««*fc*Mft#I D(l), ID (2), 

(S 1 2 1 0) . -f&ifh. ICXf—W —ff— 2 6 1£ 
■fe>y h$;fxT^4 I 0fciett§*VO>4{£ffl 
^« I D#>\ W^img&b LTJB^S*VO*4j&»5s&> 

ic^-h'3ocoiE^^«ffl#{i. a-^flaifw^itr 

tv$rV*?yCs Xf77S 12 1 0£TS5£¥<J5g$:fXT. 
a^Ji*«F*rt!*&£ k £ C RTf-f X7t/^f 16C 

is^lt ( s 1 2 2 o ) . m2<7>*$/m.mwm*®rT 

LX. >fzy+^7n^5A(:II, ( ft. 1tgS:c07T-f 
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JPO and NCI PI are not responsible for any 
damages caused by the use of this translation. 

1. This document has been translated by computer. So the translation may not reflect the 
original precisely. 

2. **** shows the word which can not be translated. 
3. In the drawings, any words are not translated. 

[Detailed Description of the Invention] 
[0001] 

[Industrial Application] This invention relates to the encryption system which enciphers data 
by encryption processing based on a program, the decryption system which decrypts 
encryption data by decryption processing based on a program, the information secrecy 
processing system which has these functions further, and information secrecy communication 
system. 

[0002] 

[Description of the Prior Art] The processing which enciphers information to keep it secret, 
using an encryption key as technique for keeping secret conventionally the contents of 
information (it also being called "data".) is known. Since it cannot return to the condition that 
human being can decode unless it uses the same encryption key or a specific decryption key 
once information is enciphered, for others who have neither such an encryption key nor the 
decryption key, the contents of the information can be made secret. 

[0003] However, if an encryption key and a decryption key (it expresses as "dark / a 
decryption key" hereafter.) are revealed, since information will be instantly decoded by 
others, the file security system which raises safety is proposed by enciphering and keeping it 
with another encryption key also to this dark / decryption key (JP,6- 102822, A). 

[0004] 

[Problem(s) to be Solved by the Invention] However, the following problems existed also in 
such a system. That is, as for the decryption processing for informational encryption 
processing or information decode, generally, it is common to be made by an encryption 
program or the decryption program (for it to express as an "encryption / decryption program" 
hereafter) with the information processor which used the computer system. 

[0005] In order for information to be enciphered by this encryption / decryption program and 
to raise safety further, when even its dark / decryption key enciphers, it is thought apparently 
that that information itself is very safe. However, the encryption / decryption program itself 
which performs this encryption and decryption has that it is [ much ] more nearly defenseless 
than the information itself. When the algorithm of this encryption / decryption program is 
analyzed by the third person, there is a possibility that it may be used for decode of the 
enciphered information. 

[0006] Moreover, there is also a possibility that a third person may decode all the enciphered 
information after that, by a third person's altering the encryption / decryption program itself so 
that a just user may not understand, and adding the function enciphered with the encryption 
key which the third person knows. Furthermore, there was also a possibility of adding the 
function which copies the information on the plaintext condition (the condition of not being 



enciphered is said.) before enciphering also to the field which a third person manages in 
encryption / decryption program. 

[0007] Of course, although keeping encryption / decryption program severely is also 
considered when not using encryption / decryption program, the processing which takes out a 
floppy etc. from a storage area, sets in an information processor for every use, and loads 
encryption / decryption program must be carried out, and encryption / decryption processing 
cannot cany out efficiently. 

[0008] This invention aims at offering the encryption system which can perform encryption 
and a decryption efficiently, a decryption system, an information secrecy processing system, 
and information secrecy communication system, without being altered by the third person. 

[0009] 

[Means for Solving the Problem] In the encryption system as which invention according to 
claim 1 enciphers data by encryption processing based on a program A program encryption 
storage means to memorize said program in the condition of having enciphered with the 1st 
encryption key corresponding to a user, The program read-out means which reads said 
program enciphered with the 1st encryption key corresponding to a user from the inside of 
said program encryption storage means, By starting the program decrypted by program 
decryption means to decrypt said program read by said program read-out means with the 
decryption key corresponding to a user, and said program decryption means The program 
starting means which is made to encipher the data for encryption with the 2nd encryption key, 
and is used as encryption data, When the data encryption for encryption is completed with 
said program starting means, it is the encryption system characterized by having a program 
elimination means to eliminate said program which was decoded and became a candidate for 
starting. 

[0010] Invention according to claim 2 is the encryption system according to claim 1 further 
equipped with a key encryption means to encipher said 2nd encryption key with the 3rd 
encryption key, and a key addition means to add said 2nd encryption key enciphered with said 
key encryption means to said encryption data. 

[0011] Invention according to claim 3 is an encryption system according to claim 2 with 
which said key addition means is realized as a function of said program. Invention according 
to claim 4 is an encryption system according to claim 1 to 3 with which said program asks for 
the 2nd encryption key by the operation. 

[0012] Invention according to claim 5 consists of attachment [ the main frame and this main 
frame ] which it is constituted by another object, and it connects with arbitration in signal, or 
can be cut to said main frame. While it has said program encryption storage means, said 
program read-out means, said program starting means, and said program elimination means 
and said attachment memorizes the decryption key corresponding to said user, said main 
frame It is an encryption system [ equipped with said program decryption means ] according 
to claim 1 . 

[0013] Invention according to claim 6 consists of attachment [ the main frame and this main 
frame ] which it is constituted by another object, and it connects with arbitration in signal, or 
can be cut to said main frame. Said main frame Said program encryption storage means, said 
program read-out means, It is the encryption system according to claim 3 with which it has 
said program decryption means, said program starting means, and said program elimination 
means, and it is equipped with said key encryption means while said attachment memorizes 
said 3rd encryption key. 



[0014] Invention according to claim 7 consists of attachment [ the main frame and this main 
frame ] which it is constituted by another object, and it connects with arbitration in signal, or 
can be cut to said main frame. Said main frame Said program encryption storage means, said 
program read-out means, It is the encryption system according to claim 3 which is equipped 
with said program starting means and said program elimination means, and is equipped with 
said program decryption means and said key encryption means while said attachment 
memorizes the decryption key corresponding to said user, and said 3rd encryption key. 

[0015] Invention according to claim 8 is an encryption system according to claim 6 or 7 with 
which said attachment remembers said 3rd encryption key to be Control Code of those who 
permit a decryption as a corresponding list. Invention according to claim 9 is an encryption 
system according to claim 5 to 7 which generates said decryption key or said 3rd encryption 
key by the operation using Control Code, when said attachment does not carry out immediate 
memory of said decryption key or said 3rd encryption key but said decryption key or said 3rd 
encryption key is needed. 

[0016] Invention according to claim 10 is an encryption system according to claim 1 to 9 with 
which said program has the function to stop self processing and to perform processing of said 
program elimination means when the next alter operation is not performed by the user within 
predetermined time. 

[0017] In the decryption system to which invention according to claim 1 1 decrypts encryption 
data by decryption processing based on a program A program encryption storage means to 
memorize said program in the condition of having enciphered with the 1st encryption key 
corresponding to a user, The program read-out means which reads said program enciphered 
with the 1st encryption key corresponding to a user from the inside of said program 
encryption storage means, By starting said program decrypted by program decryption means 
to decrypt said program read by said program read-out means with the decryption key 
corresponding to a user, and said program decryption means The program starting means 
which is made to decrypt encryption data with the 2nd decryption key, and is used as 
decryption data, When a decryption of encryption data is completed with said program 
starting means, it is the decryption system characterized by having a program elimination 
means to eliminate said program which was decrypted and became a candidate for starting. 

[0018] Invention according to claim 12 is the decryption system [ equipped with a key 
decryption means to decrypt the enciphered 2nd decryption key which is contained in said 
encryption data with the decryption key corresponding to a user further ] according to claim 
11. 

[0019] Invention according to claim 13 consists of attachment [ the main frame and this main 
frame ] which it is constituted by another object, and it connects with arbitration in signal, or 
can be cut to said main frame. While it has said program encryption storage means, said 
program read-out means, said program starting means, and said program elimination means 
and said attachment memorizes the decryption key corresponding to said user, said main 
frame It is a decryption system [ equipped with said program decryption means ] according to 
claim 1 1 . 

[0020] Invention according to claim 14 consists of attachment [ the main frame and this main 
frame ] which it is constituted by another object, and it connects with arbitration in signal, or 
can be cut to said main frame. Said main frame Said program encryption storage means, said 
program read-out means, It is the decryption system according to claim 12 which is equipped 
with said program decryption means, said program starting means, and said program 
elimination means, and is equipped with said key decryption means while said attachment 
memorizes the decryption key corresponding to said user. 



[0021] Invention according to claim 15 consists of attachment [ the main frame and this main 
frame ] which it is constituted by another object, and it connects with arbitration in signal, or 
can be cut to said main frame. While it has said program encryption storage means, said 
program read-out means, said program starting means, and said program elimination means 
and said attachment memorizes the decryption key corresponding to said user, said main 
frame It is a decryption system [ equipped with said program decryption means and said key 
decryption means ] according to claim 12. 

[0022] Invention according to claim 16 is a decryption system according to claim 13 to 15 
which generates said decryption key by the operation using Control Code, when said 
attachment does not carry out immediate memory of said decryption key but said decryption 
key is needed. 

[0023] Invention according to claim 17 is a decryption system according to claim 11 to 16 by 
which said program has the function to stop self processing and to perform processing of said 
program elimination means when the next alter operation is not performed by the user within 
predetermined time. 

[0024] Invention according to claim 18 is an information secrecy processing system with 
which it comes to put any of claims 1-10, the encryption system of a publication, and a 
decryption system according to claim 11 to 17 together. Invention according to claim 19 is 
any of claims 1-10 equipped with a transmitting means to transmit said encryption data to the 
other party through a communication line, or the encryption system of a publication. 

[0025] Invention according to claim 20 is the decryption system of any of claims 11-17 
equipped with a receiving means to receive said encryption data through a communication 
line, or a publication. Invention according to claim 2 1 is information secrecy communication 
system with which it comes to put an encryption system and a decryption system according to 
claim 20 according to claim 19 together. 

[0026] 

[Function and Effect(s) of the Invention] The encryption system of claim 1 is equipped with a 
program encryption storage means, a program read-out means, a program decryption means, a 
program starting means, and a program elimination means, and a program encryption storage 
means memorizes, where the program for encryption processing is enciphered with the 1st 
encryption key corresponding to a user. A program read-out means reads said program 
enciphered with the 1st encryption key corresponding to a user from the inside of said 
program encryption storage means. A program decryption means decrypts said program read 
by said program read-out means with the decryption key corresponding to a user. By starting 
the program decrypted by said program decryption means, a program starting means makes 
the data for encryption encipher with the 2nd encryption key, and let it be encryption data. A 
program elimination means will eliminate said program which was decoded and became a 
candidate for starting, if the data encryption for encryption is completed with said program 
starting means. 

[0027] Thus, the program for encryption processing started with the encryption system of this 
invention is memorized in the condition of having been enciphered by the program encryption 
storage means, when not used for encryption processing. Therefore, since it cannot analyze 
and analyze by the third person while it had been enciphered, an alteration is also impossible. 
Moreover, when a user possesses, a decryption key cannot decrypt the program for encryption 
processing, even if a program decryption means becomes clear for a third person. 

[0028] When a just user enciphers data, a program read-out means reads said program 
enciphered with the 1st encryption key corresponding to a user from the inside of a program 
encryption storage means, a program decryption means decrypts the program with the 



decryption key corresponding to a user, and a program starting means starts the decrypted 
program. It is enciphered with the 2nd encryption key by this started function of said program, 
and the data for encryption turn into encryption data by it. 

[0029] And after a data encryption is completed, a program elimination means eliminates the 
program of the started plaintext condition. For this reason, even after carrying out encryption 
processing, the program for encryption of a plaintext condition does not remain, the safety of 
the program for encryption is secured, and the safety of the enciphered data is also secured as 
a result. Therefore, it is not necessary to take out the storage which has memorized the 
program for encryption processing from a storage area for every encryption processing, and to 
do the activity set and loaded to a computer, and an encryption activity can be performed 
efficiently. 

[0030] A key encryption means and a key addition means may be further added to the above- 
mentioned configuration. This key encryption means enciphers said 2nd encryption key with 
the 3rd encryption key. And a key addition means adds said 2nd encryption key enciphered 
with said key encryption means to said encryption data. 

[0031] Thus, since the 2nd encryption key for enciphering data is further enciphered with the 
3rd encryption key, insurance is securable even if it adds the 2nd encryption key to encryption 
data with the key addition means. Moreover, since the 2nd encryption key is added to 
encryption data, encryption data can be decrypted, if even the 3rd encryption key is kept at a 
carrying place or the communications-partner point even if it transmits carrying with the 
storage ****, or its encryption data to the other party by communication link. That is, 
encryption data can be decrypted with the 2nd encryption key which decrypted the enciphered 
2nd encryption key which is added to encryption data with the 3rd encryption key, and then 
was decrypted. In addition, the key addition means may be realized as a function of the 
program for said encryption. 

[0032] Furthermore, the 2nd encryption key may be called for by the operation by the 
program for said encryption in this case. Thus, the encryption key required in an operation is a 
temporary key, and since it is not used continuously, the safety of data is secured more. 
Moreover, since it is calculating by the program for the above-mentioned encryption, since 
only what was enciphered exists, this temporary key cannot alter the program which generates 
that 2nd encryption key except the time of encryption processing, either, so that the key which 
the third person knows may be generated. 

[0033] Moreover, this encryption system separates to the attachment [ the main frame and this 
main frame ] which it is constituted by another object, and it connects with arbitration in 
signal, or can be cut to said main frame, and may be constituted. For example, the 
configuration which uses the main frame as a computer apparatus and uses attachment as an 
IC card is mentioned. 

[0034] In this case, the main frame is good also as a configuration which is equipped with 
said program encryption storage means, said program read-out means, said program starting 
means, and said program elimination means, and is equipped with said program decryption 
means while memorizing the decryption key corresponding to said user in attachment. 

[0035] Thus, if constituted, when not carrying out encryption processing, attachment can be 
separated from the main frame and it can contain to a safe storage area. Since the decryption 
key and program decryption means corresponding to a user exist, both the safeties of the 
program of the decryption key and a program decryption means are secured, and the safety of 
data is further secured to an attachment side. 

[0036] Moreover, similarly, when separately constituted by the main frame and attachment, it 
is good as a configuration which the main frame equips with said program encryption storage 



means, said program read-out means, said program decryption means, said program starting 
means, and said program elimination means, and is equipped with said key encryption means 
while attachment memorizes said 3rd encryption key. 

[0037] Thus, if constituted, since the 3rd encryption key and a key encryption means exist, 
both the safeties of the program of the 3rd encryption key and a key encryption means will be 
secured, and the safety of data will be further secured to an attachment side. Moreover, when 
separately constituted by the main frame and attachment, while the configuration which 
considered above-mentioned both, i.e., the main frame, is equipped with said program 
encryption storage means, said program read-out means, said program starting means, and 
said program elimination means and attachment memorizes the decryption key corresponding 
to said user, and said 3rd encryption key, it is good also as a configuration which it has in said 
program decryption means and said key encryption means. 

[0038] Thus, if constituted, since the decryption key corresponding to a user, the 3rd 
encryption key, a program decryption means, and a key encryption means exist, all the 
safeties of the program of the decryption key corresponding to the user, the 3rd encryption 
key, and a program decryption means and the program of a key encryption means will be 
secured, and the safety of data will be further secured to an attachment side. 

[0039] Moreover, said attachment may memorize as a list with which the decryption was 
corresponded in the 3rd encryption key with a person's Control Code to permit. Thus, if are 
constituted and those who permit a decryption by Control Code, for example, ID, will be 
specified, the key encryption means of attachment can encipher the 2nd encryption key with 
the 3rd encryption key corresponding to the ID. 

[0040] Moreover, when said attachment did not cany out immediate memory of a decryption 
key or the 3rd encryption key but the decryption key or the 3rd encryption key was needed, it 
is good also as what generates a decryption key or the 3rd encryption key by the operation 
using Control Code. When many 3rd encryption keys must memorize especially, since it is 
good only at operation expression, it becomes saving of memory. 

[0041] Moreover, said program is good also as what has the function to stop self processing 
and to perform processing of said program elimination means, when the next alter operation is 
not performed by the user within predetermined time. If it does in this way, even if a just user 
will once separate from a system unit, since the program of a plaintext condition itself 
disappears after a while, it is analyzed by the third person or is not altered. 

[0042] The decryption system of claim 1 1 A program encryption storage means, a program 
read-out means, It has a program decryption means, a program starting means, and a program 
elimination means. A program encryption storage means Said program is memorized in the 
condition of having enciphered with the 1st encryption key corresponding to a user. A 
program read-out means Said program enciphered with the 1st encryption key corresponding 
to a user is read from the inside of said program encryption storage means. A program 
decryption means Said program read by said program read-out means is decrypted with the 
decryption key corresponding to a user. A program starting means By starting said program 
decrypted by said program decryption means, encryption data are made to decrypt with the 
2nd decryption key, and it considers as decryption data. A program elimination means If a 
decryption of encryption data is completed with said program starting means, said program 
which was decrypted and became a candidate for starting will be eliminated. 

[0043] Thus, the program for decryption processing started by the decryption system of this 
invention is memorized in the condition of having been enciphered by the program encryption 
storage means, when not used for decryption processing. Therefore, since it cannot analyze 
and analyze by the third person while it had been enciphered, an alteration is also impossible. 



Moreover, when a user possesses, a decryption key cannot decrypt the program for decryption 
processing, even if a program decryption means becomes clear for a third person. 

[0044] When a just user decrypts encryption data, a program read-out means reads said 
program enciphered with the 1st encryption key corresponding to a user from the inside of a 
program encryption storage means, a program decryption means decrypts the program by the 
decryption key corresponding to a user, and a program starting means starts the decrypted 
program. By this started function of said program, encryption data can be made to be able to 
decrypt with the 2nd decryption key, and it can carry out to decryption data, i.e., plaintext 
data. 

[0045] And after a decryption of encryption data is completed, a program elimination means 
eliminates the program of the started plaintext condition. For this reason, without the program 
for a decryption of a plaintext condition remaining, even after carrying out decryption 
processing, the safety of the program for a decryption is secured and the safety of data is also 
secured as a result. Therefore, it is not necessary to take out the storage which has memorized 
the program for decryption processing from a storage area for every decryption processing, 
and to do the activity set and loaded to a computer, and a decryption can be done efficiently. 

[0046] Key decryption ****** may be further added to the above-mentioned configuration. 
This key decryption means decrypts the enciphered 2nd decryption key which is contained in 
encryption data with the decryption key corresponding to a user. By doing in this way, the 
2nd decryption key for decrypting encryption data is obtained, and only a just user can 
decrypt encryption data appropriately and can get plaintext data. 

[0047] Moreover, this decryption system separates to the attachment [ the main frame and this 
main frame ] which it is constituted by another object, and it connects with arbitration in 
signal, or can be cut to said main frame, and may be constituted. For example, the 
configuration which uses the main frame as a computer apparatus and uses attachment as an 
IC card is mentioned. 

[0048] In this case, the main frame is good also as a configuration which is equipped with 
said program encryption storage means, said program read-out means, said program starting 
means, and said program elimination means, and is equipped with said program decryption 
means while memorizing the decryption key corresponding to said user in attachment. 

[0049] Thus, if constituted, when not carrying out decryption processing, attachment can be 
separated from the main frame and it can contain to a safe storage area. Since the decryption 
key and program decryption means corresponding to a user exist, both the safeties of the 
program of the decryption key and a program decryption means are secured, and the safety of 
data is further secured to an attachment side. 

[0050] Moreover, similarly, when separately constituted by the main frame and attachment, 
the main frame is good as a configuration which is equipped with said program encryption 
storage means, said program read-out means, said program decryption means, said program 
starting means, and said program elimination means, and is equipped with said key decryption 
means while memorizing the decryption key corresponding to a user in attachment. 

[0051] Thus, if constituted, since the decryption key and key decryption means corresponding 
to a user exist, both the safeties of the program of the decryption key and a key decryption 
means will be secured, and the safety of data will be further secured to an attachment side. 
Moreover, when separately constituted by the main frame and attachment, it is good also as a 
configuration which the configuration which considered above-mentioned both, i.e., the main 
frame, is equipped with said program encryption storage means, said program read-out means, 
said program starting means, and said program elimination means, and is equipped with said 



program decryption means and said key decryption means while attachment memorizes the 
decryption key corresponding to said user. 

[0052] Thus, if constituted, since the decryption key corresponding to a user, a program 
decryption means, and a key decryption means exist, all the safeties of the program of the 
decryption key corresponding to the user and a program decryption means and the program of 
a key decryption means will be secured, and the safety of data will be further secured to an 
attachment side. 

[0053] Moreover, when said attachment did not carry out immediate memory of the 
decryption key but the decryption key was needed, it is good also as what generates a 
decryption key by the operation using Control Code. Moreover, said program is good also as 
what has the function to stop self processing and to perform processing of said program 
elimination means, when the next alter operation is not performed by the user within 
predetermined time. If it does in this way, even if a just user will once separate from a system 
unit, since the program of a plaintext condition itself disappears after a while, it is analyzed by 
the third person or is not altered. 

[0054] Moreover, you may constitute as an information secrecy processing system combining 
the encryption system of one of the configurations mentioned above, and one of the 
decryption systems mentioned above. While it can have the function of both an encryption 
system and a decryption system and processing of a user becomes efficient with one 
information secrecy processing system by this, the safety of a program or data is also secured. 

[0055] In addition, in the encryption system mentioned above, it can constitute as data 
telecommunication systems, such as facsimile apparatus which is equipped with a 
transmitting means to transmit encryption data to the other party through a communication 
line, for example, has an encryption function. Moreover, in the decryption system mentioned 
above, it can constitute similarly as data telecommunication systems, such as facsimile 
apparatus which is equipped with a receiving means to receive encryption data through a 
communication line, for example, has the decode function of encryption data. 

[0056] Of course, the encryption system which has an above-mentioned transmitting means, 
and the decryption system which has an above-mentioned receiving means can be constituted 
as information secrecy communication system, such as facsimile apparatus which has 
combination, an encryption function, and an encryption data decode function. 

[0057] 

[Example] Drawing 1 and drawing 2 show one example of the information secrecy processing 
system of this invention. Among this, drawing 1 shows the block diagram of an information 
processor 2. The information processor 2 is equipped with CPU4, ROM6, RAM8, backup 
RAM 10, a keyboard 12, the magneto-optic-disk (MOD) drive 14, CRT display 16, hard disk 
(HD) equipment 18, the floppy disk (FD) drive 20, and the input/output interface (I/O) 22. 
These configurations are connected in signal by bus 24, and the IC card reader 26 is further 
connected to 1/022. 

[0058] Thus, the magneto-optic disk which the information processor 2 was constituted as a 
computer and inserted in ROM6 and Magnetic-Optical disk drive 14, It is based on the 
program and data which were read from IC card 30 ( drawing 2 ) inserted in the floppy disk or 
the IC card reader 26 inserted in the hard disk drive unit 1 8 and the floppy disk drive 20. The 
magneto-optic disk in which the data which performed required processing and were obtained 
as a result were inserted by Magnetic-Optical disk drive 14, It memorizes to IC card 30 
inserted in the floppy disk or the IC card reader 26 inserted in the hard disk drive unit 18 and 
the floppy disk drive 20. An information processor 2 may be equipped with CD-ROM drive 
equipment, magnetic tape storage, etc. in addition to this. 



[0059] The block diagram of IC card 30 is shown in drawing 2 . IC card 30 is equipped with 
CPU32, ROM34, RAM36, backup RAM 38, and an input/output interface (I/O) 40. These 
configurations are connected in signal by bus 42. In addition, I/O40 is the interface equipped 
with the connector to the IC card reader 26 of an information processor 2. 

[0060] The initial program IP for enciphering and decrypting data to the program area of 
RAM8 by power-source ON of said information processor 2, as shown in drawing 3 (a) is 
loaded and started from a hard disk drive unit 18. In addition, as shown in drawing 3 (b), the 
2nd dark / "decryption processing program" Prl-Prn as which plurality was enciphered in 
addition to the initial program IP are stored in the hard disk drive unit 18. It will be 
enciphered with the encryption key (the 1st encryption key) of the user of this information 
processor 2, and only the number of users will exist, and these 2nd dark / "decryption 
processing program" Prl-Prn(s) will be programs which have the same function 
fundamentally, if it decrypts. However, a function which is different for every user so that it 
may mention later can also be given. Correspondence with a user and a program is performed 
by referring to the user ID-program address table in the hard disk drive unit 18 shown in 
drawing 3 (b). These 2nd dark / "decryption processing program" Prl-Prn, and user ID- 
program address tables are beforehand installed in the hard disk drive unit 1 8 with said initial 
program IP. 

[0061] moreover, for the backup RAM 38 of IC card 30 As shown in drawing 4 , the program 
of password collate-program Prll, encryption processing program Prl2, decryption 
processing program Prl3, key encryption processing program Prl4, and key decryption 
processing program Prl5 grade, A just user's password, a just user's ID, The other party 
encryption keys Kl, K2, --, Kn corresponding to ID (ID1, ID2, ~, IDn) and ID of the partner 
whom a just user's dark / decryption key (it corresponds to the 1st encryption key and a 
decryption key), and a just user permit a decryption of data are memorized. 

[0062] In order that a user may encipher data, when power-source ON of the information 
processor 2 is carried out, the initial program IP shown in the flow chart of drawing 5 and 
drawing 6 is started. First, initialization processing is performed at step SI 00, the initial state 
of the various configurations which exist in an information processor 2 is set up, and 
processing of determining the initial value of the data used for a program is made. 

[0063] Next, it is judged whether the IC card reader 26 is equipped with IC card 30 (SI 10). If 
not equipped, a negative judging is carried out at step SI 10, the display which requires 
wearing of IC card 30 is performed to CRT display 16 (SI 20), and the processing which 
performs step SI 10 again is repeated. 

[0064] If the IC card reader 26 is equipped with IC card 30, an affirmation judging will be 
carried out at step SI 10, and the display which requires a password next will be made by CRT 
display 16 (SI 30). This password asks for the password of the just user of IC card 30 shown 
in drawing 4 R> 4. 

[0065] If it is judged whether the input of a password was made from the keyboard 12 (SI 40) 
and there is no input, processing of steps SI 40 and SI 50 will be repeated until it is judged 
with a time-out at step SI 50. If it corresponds to a time-out, and the input of a password is not 
made even if it carries out predetermined time progress, at step SI 50, an affirmation judging 
is carried out and processing of this initial program is ended. If the input of a password is 
before carrying out a time-out, the password which the affirmation judging was carried out 
and was entered at step SI 40 will be transmitted to an IC card 30 side. And it waits to 
transmit the collating result and a user's ID of a password from an IC card 30 side next 
(SI 70). 



[0066] The processing by the side of IC card 30 is shown in the flow chart of drawing 7 - 
drawing 8 . This processing is processing started when the IC card reader 26 is equipped with 
IC card 30. First, it becomes the receiving waiting of the password from an information 
processor 2 (S500). If a password is transmitted, an affirmation judging will be carried out at 
step S500 by processing of step SI 60 mentioned above, and collating with the password of 
the just user of this IC card 30 memorized by password collate-program Prl 1 by the backup 
RAM 38 shown in drawing 4 and the password sent from the information processor 2 is made 
(S520). 

[0067] And the result of the collating and a just user's ID are transmitted to an information- 
processor 2 side (S530). If the password of the just user by whom the collating result was 
memorized in "agreement" 38, i.e., the password from an information processor 2 and Backup 
RAM, is in agreement, since it turns out that the just user is using the IC card 30, a user's just 
its dark / decryption key are read from backup RAM 38 next (S550). When the collating result 
of a password becomes an inequality, a negative judging is carried out at step S540, and it 
returns to processing of step S500 again. 

[0068] When step S550 is processed, it becomes the transmitting waiting from an information 
processor 2 next (S560). If a collating result and ID are transmitted to an information 
processor 2 by processing of step 530, in an information-processor 2 side, it will be judged 
whether the affirmation judging was carried out at step 170, and then it agreed (SI 80). By the 
just user, if it has not agreed, since there is nothing, a negative judging is carried out at step 
180, if inharmonious things and processing are stopped is displayed on CRT display 16 
(SI 90), and it returns to processing of step SI 10. Therefore, if the IC card reader 26 is 
equipped with IC card 30, again, a password will be required at step 130 and it will become 
the waiting for a password input in step 140 and SI 50. What is necessary is just to correct 
again, if it is a just user, since it can ask for an input even if it mistakes the input of a 
password. However, since, as for making a password repeat and enter, the possibility of 
coincidence becomes high in being unjust use, the input mistake of a password is made in to 3 
times, at step SI 80, in the case of the 3rd mistake, it does not return to step SI 10, but this 
initial program is ended. 

[0069] If a judgment that it agreed at step SI 80 is made, the display of the purport 
corresponding to CRT display 16 will be made (S200), the 2nd enciphered dark / decryption 
processing program corresponding to ID which received with the collating result from IC card 
30 next will be discovered from the storage file of a hard disk drive unit 18, and it will 
transmit to an IC card 30 side (S210). As shown in drawing 3 (b), from the user ID-program 
address table filed by the hard disk drive unit 18, looking for a program from ID obtains the 
address on the disk of the 2nd enciphered dark / decryption processing program corresponding 
to ID, and it is performed by reading the 2nd [ which corresponds from the address ] 
enciphered dark / decryption processing program. For example, if a user's ID is IDb, it will 
become clear from a user ID-program address table that the 2nd enciphered dark / decryption 
processing program Pr2 correspond, and the 2nd enciphered dark / decryption processing 
program Pr2 will be read from the disk address. 

[0070] Next, it becomes the transmitting waiting from IC card 30 (S220). In an IC card 30 
side, if there is transmission of the 2nd dark / decryption processing program Pr2 enciphered 
from the information processor 2, an affirmation judging will be carried out by the judgment 
of step S560, and then reception and the received decryption processing of a program Pr 2 of 
the program Pr 2 will be made (S570). That is, decryption processing program Prl 3 which 
exists in backup RAM 38 is started, and the program Pr 2 transmitted from the information 
processor 2 is decrypted. In addition, when a program Pr 2 is long and cannot transmit or 
decrypt at once by the relation between a buffer or activity memory space, it may divide, and 
you may transmit or decrypt. " 



[0071] Next, the 2nd decrypted dark / decryption processing program Pr2 are transmitted to 
an information processor 2 (S580). Next, if it is judged whether the key and the decryption 
candidate ID were received temporarily which has not been enciphered (S590) and it has not 
received, it is judged whether the key was received temporarily which was enciphered (S595). 
If this has not received, either, it is judged whether the 2nd dark / decryption processing 
program which has not been enciphered were received (S600). Before neither has received, 
the judgment of step S590, step S595, and step S600 is repeated. 

[0072] In an information-processor 2 side, if it was decrypted, namely, the 2nd dark / 
decryption processing program Pr2 of a plaintext are received from an IC card 30 side, an 
affirmation judging will be carried out at step S220, and the 2nd dark / decryption processing 
program Pr2 of the plaintext will be transmitted to activity memory area PA of RAM8, as 
shown in drawing 2 (a) (S230). 

[0073] Next, the 2nd dark / decryption processing program Pr2 of this plaintext are started 
from an initial program (S240). The flow chart of the 2nd its dark / decryption processing 
program Pr2 is shown in drawing 9 - drawing 12 . This processing is performed by starting 
processing of step S240. 

[0074] Initiation of processing of the 2nd dark / decryption processing program Pr2 displays a 
processing menu on CRT display 16 first (SI 010). Menus are encryption processing (SI 100), 
decryption processing (SI 200), modification processing (SI 300) of the 2nd dark / decryption 
processing program, and other processings (SHOO). 

[0075] Here, a user's selection of encryption processing (SHOO) starts the processing shown 
in drawing 10 . First, the input of the data name for encryption and the decryption candidate 
ID is required (SI 102). The data name for encryption is performed by specifying the file in 
the floppy disk set to the magneto-optic disk, the hard disk drive unit 18, or floppy disk drive 
20 set to Magnetic-Optical disk drive 14. Here, since encryption data are stored in a magneto- 
optic disk, the data for encryption shall exist in a floppy disk. 

[0076] Moreover, the decryption candidate ID inputs ID of the partner who permits a 
decryption. If the other party who permits a decryption is plurality, two or more ID will be 
inputted. In addition, if a group's ID registered beforehand is inputted, it means specifying ID 
of two or more partners belonging to the group, and two or more persons can be made into a 
decryption candidate by one ID. 

[0077] It becomes the waiting for an input until predetermined time-out time amount passes in 
time out treatment (SI 106) here (SI 104). To a time-out, if there is no input, an affirmation 
judging will be carried out at step SI 106, and it will return to an initial program immediately, 
but if the input of the data name for encryption and the decryption candidate ID is made, a key 
(the 2nd encryption key) will be generated next temporarily (SI 108). 

[0078] Here, as for generation of a key, it is desirable that it is a different key (a value and 
character string) for every generation temporarily. For example, the approach of measuring 
the time interval of the approach by the M sequence random-number-generation program or a 
key stroke in about 1/100,000 second, and taking out only a low-ranking need digit count etc. 
is mentioned. In this way, it becomes the receiving waiting of a key temporarily [ which was 
enciphered ] which transmits a key and the decryption candidate ID to an IC card 30 side 
temporarily which was generated (SI 110), and then is transmitted from an IC card 30 side 
(SI 120). 

[0079] In an IC card 30 side, since the key and the decryption candidate ID were received 
temporarily, an affirmation judging is carried out at step S590 of drawing 8 , next a key is 
enciphered temporarily with the other party encryption key corresponding to the decryption 
candidate ID by key encryption processing program Prl4 (S610). In the backup RAM 38 of 



IC card 30 From the other party encryption keys Kl, K2, --, Kn corresponding to ID1, ID2, — , 
IDn, and its ID of the partner whom a just user permits a decryption of data being memorized 
as shown in drawing 4 For example, if the decryption candidate ID is ID2, the corresponding 
other party encryption key K2 will be chosen, and a key will be enciphered with the other 
party encryption key K2 temporarily. Moreover, as long as a group's ID is inputted, an other 
party encryption key may be chosen from ID of those who become the group's representation, 
and a key may be enciphered with the other party encryption key temporarily, and a key may 
be enciphered with a group's original other party encryption key temporarily. 

[0080] Next, a key is transmitted to an information-processor 2 side temporarily which was 
enciphered in this way (S620), and processing with IC card 30 returns to processing of step 
S500. In an information-processor 2 side, since the key was received temporarily which was 
enciphered, a key is stored in a storage as a file with ID temporarily which the affirmation 
judging was carried out and was enciphered at step SI 120 (SI 130). Although this storage is a 
storage specified by a user, it is the magneto-optic disk set to Magnetic-Optical disk drive 14 
here. Of course, the storage of floppy disk or hard disk drive unit 18 and others may be used. 

[0081] Next, the data for encryption is enciphered temporarily which the data for encryption 
already inputted at step SI 102 are read (SI 140), and is not enciphered with a key, i.e., a one 
time [ being generated at step SI 108 ] key, (SI 150). As a program which carries out 
encryption processing of such data using a key, DES which is a U.S. standard algorithm, 
FEEL to which NTT developed are known. 

[0082] Next, this enciphered data is stored in the file stored in the key ID and temporarily 
enciphered (SI 160). That is, as shown in drawing 13 , it stores as a header a decode person's 
(those who permit decode) ID (1), ID (2), — , temporarily [ encryption ] corresponding to ID 
(n) and its ID as key K (1), K (2), --, a file that indicated the encryption data enciphered with 
the key as data division temporarily by indicating a list with K (n). 

[0083] In this way, encryption processing (SI 100) is completed with an information processor 
2, and when the data [ say / the data for encryption of being read by the activity memory area 
of RAM8 by processing of step SI 140 on RAM8 ] which are not enciphered next exist, 
processing (SI 500) which clears the data is performed. 

[0084] In this way, the 2nd dark / decryption processing are completed, and it returns to an 
initial program. In an initial program, processing of step S250 shown in drawing 6 is 
performed, the 2nd dark / decryption processing program which exists on RAM8 are cleared, 
and it returns to processing of step SI 10. 

[0085] Thus, a data encryption is completed. As mentioned above, the program for encryption 
processing ( drawing 9 , drawing 10 ) started with the information processor 2 of this example 
is memorized in the condition of having been enciphered by the hard disk drive unit 18, when 
not used for encryption processing. Therefore, since it cannot analyze and analyze by the third 
person, an alteration is also impossible. 

[0086] When a just user enciphers data, by reading said program enciphered with a just user's 
dark / decryption key from a hard disk drive unit 1 8, decrypting the program with a just user's 
dark / decryption key, and starting the decrypted program, the data for encryption can be 
made to be able to encipher with a key (the 2nd encryption key) temporarily, and it can 
consider as encryption data. 

[0087] And after a data encryption is completed, the started program is eliminated. For this 
reason, without the program for encryption of a plaintext condition remaining, even after 
carrying out encryption processing, the safety of the program for encryption is secured and the 
safety of the enciphered data is also secured as a result. Therefore, it is not necessary to take 
out the storage which has memorized the program for encryption processing from a storage 



area for every encryption processing, and to do the activity set and loaded to an information 
processor 2, and an encryption activity can be performed efficiently. 

[0088] Moreover, since it is cleared when the data before encryption also remain on the 
activity memory area, safety is more high. Furthermore, a key (the 2nd encryption key) is 
enciphered with an other party encryption key (the 3rd encryption key) temporarily. And a 
key is contained by encryption data and one file with ID of those who permit a decryption 
temporarily [ this ] that was enciphered. 

[0089] Thus, since the momentary key (the 2nd encryption key) for enciphering data is further 
enciphered with the other party encryption key (the 3rd encryption key), insurance is 
securable even if it adds the key (the 2nd encryption key) to encryption data temporarily. 
Moreover, since a key (the 2nd encryption key) is added to encryption data temporarily, 
encryption data can be decrypted, if even the other party encryption key (the 3rd encryption 
key) is kept at a carrying place or the communications-partner point even if it transmits 
carrying with the storage (here magneto-optic disk) ****, or its encryption data to the other 
party by communication link. 

[0090] A key (the 2nd encryption key) is called for by the operation by the program for said 
encryption temporarily. Thus, the encryption key for enciphering data is a temporary key only 
for the encryption at that time, and since it is not used continuously, the safety of data is 
secured more. Moreover, since it is calculating within the program for said encryption and 
only what that program was enciphered as exists except the time of encryption processing, a 
third person cannot alter a key temporarily [ this ], either, so that the key which he knows may 
be generated. 

[0091] The information secrecy processing system of this example Moreover, the information 
processor 2 as the main frame, It is separated and constituted by IC card 30 as attachment [ 
this information processor 2 ] which it is constituted by another object, and it connects with 
arbitration in signal, or can be cut to an information processor 2. An information processor 2 
And program encryption storage processing, program read-out processing, While it has each 
program of program starting processing and program elimination processing and IC card 30 
memorizes a just user's dark / decryption key, and other party encryption key (3rd encryption 
key) It considers as the configuration equipped with each program of program decryption 
processing and key encryption processing. That is, since the program of a user's just dark / 
decryption key, an other party encryption key (the 3rd encryption key), and program 
decryption processing and the program of key encryption processing exist, the safety of the 
program of a user's just its dark / decryption key, an other party encryption key (the 3rd 
encryption key), and program decryption processing and the program of key encryption 
processing is secured, and the safety of data is further secured to an IC card 30 side. 

[0092] Next, when the magneto-optic disk which stored the encryption data file shown in 
drawing 13 is received, the processing which decrypts the data is explained. First, after an 
information processor 2 carries out power-source ON, a user sets the received magneto-optic 
disk to Magnetic-Optical disk drive 14, and sets self IC card 30 to the IC card reader 26. 

[0093] An initial program is started in an information processor 2. The processing in this case 
is as having explained step S240 from step SI 00 on the occasion of data encryption. Also in 
IC card 30, it is the same. Of course, if users differ, since IC cards 30 also differ, ID which 
receives at step SI 70 also differs, and dark differs also from the 2nd [ which is transmitted to 
IC card 30 at step S210 ] enciphered decryption processing program. 

[0094] For example, if a user's ID is IDa, as for the program by which it is transmitted to IC 
card 30, consequently the 2nd enciphered dark / decryption processing program Prl are 
started by step S240 from the 2nd enciphered dark / decryption processing program Prl 



corresponding, the 2nd dark / decryption processing program Prl will be performed. In 
addition, it is explained here that the 2nd dark / decryption processing program Prl are the 
same contents as the 2nd dark / decryption processing program Pr2. 

[0095] If the 2nd dark / decryption processing program Prl are started at step S240, the 
display of a processing menu will be first made at step SI 010 of the flow chart shown in 
drawing 9 . If a user chooses decryption processing here, processing of step SI 200 will be 
started. This decryption processing is shown in the flow chart of drawing 11 . 

[0096] First, the demand of the data name input for a decryption is displayed (SI 202). Next, it 
becomes the input waiting (SI 204) until it is judged with a time-out at step SI 206. If it 
becomes a time-out, without making an input, an affirmation judging will be carried out at 
step SI 206, the 2nd dark / decryption processing are ended, and it returns to an initial 
program. 

[0097] When one data file in the magneto-optic disk set to Magnetic-Optical disk drive 14 is 
specified (all the files in a magneto-optic disk may be specified, and) all the files in a specific 
directory may be specified. An affirmation judging is carried out at step SI 204, and key K (1), 
K (2), and — are read from the header of the encryption data for [ the ] a decryption the 
decryption candidates ID (1) and ID (2), — , temporarily [ corresponding ] that was enciphered 
(S1208). 

[0098] Next, it is judged whether a user's ID exists in these decryption candidates ID (1) and 
ID (2) and - (S1210). That is, it is judged whether a user's ID indicated by IC card 30 set to 
the IC card reader 26 is specified as a decryption candidate. If it does not exist, since the 
decryption is not permitted, the negative judging of the just user of IC card 30 by which the 
current set is carried out is carried out at step S1210, and a decryption displays that it is 
disapproval on CRT display 16 (SI 220), ends the 2nd dark / decryption processing, and 
returns to an initial program. In addition, if at least one file with which a user's ID indicated 
by IC card 30 is specified as the header as a decryption candidate exists when multiple files 
are directed as a candidate for a decryption, processing after step SI 230 will be performed 
only about the file included. Moreover, if the just user of IC card 30 is contained in the group 
when a group's ID is specified as the header, the just user will presuppose that it is specified 
as the header. 

[0099] If ID (1) corresponds when a just user's ID indicated by IC card 30 is contained in the 
decryption candidates ID (1) and ID (2) and ~ for example An affirmation judging is carried 
out at step S1210, key K (1) is transmitted to an IC card 30 side temporarily [ which was 
enciphered ] which was read from the header of the file for a decryption (SI 230), and it 
becomes the receiving waiting (SI 240) of a key temporarily which was decrypted next. 

[0100] If key K (1) is received temporarily which was enciphered in the condition of having 
repeated steps S590, S595, and S600 in the IC card 30 side, an affirmation judging will be 
carried out at step S595, and key K (1) will be decrypted temporarily temporarily which was 
enciphered by key decryption processing program Prl 5 with dark / decryption key of the just 
user who has memorized to backup RAM 38 (S630). 

[0101] Next, a key is transmitted to an information processor 2 temporarily which was 
decrypted (S640), and it returns to processing of step S500. In an information-processor 2 
side, since the key was received temporarily which was decrypted, an affirmation judging is 
carried out at step SI 240, and it decrypts with a key temporarily which had the data division 
of the data for a decryption decrypted, and stores in a storage (SI 250). 

[0102] In this way, after decryption processing (SI 200) is completed, when the data which are 
not enciphered on RAM8 at step SI 500 mentioned above, i.e., the decrypted data, exist, 
processing which clears the data is performed. In this way, the 2nd dark / decryption 



processing are completed, and it returns to an initial program. In an initial program, 
processing of step S250 shown in drawing 6 is performed, the 2nd dark / decryption 
processing program which exists on RAM8 are cleared, and it returns to processing of step 
SI 10. 

[0103] Thus, a decryption of data is completed. As mentioned above, the program for 
decryption processing ( drawing 9 , drawing 11 ) started with the information processor 2 of 
this example is memorized in the condition of having been enciphered by the hard disk drive 
unit 18, when not used for decryption processing. Therefore, since it cannot analyze and 
analyze by the third person, an alteration is also impossible. 

[0104] It is a key (it corresponds to the 2nd decryption key.) about encryption data 
temporarily by reading said program enciphered with a just user's dark / decryption key from 
a hard disk drive unit 18, decrypting the program with a just user's dark / decryption key, and 
starting the decrypted program, when a just user decrypts decryption data. That is, there is a 
key also with the 2nd encryption key and it is also the 2nd decryption key temporarily. It can 
be made to be able to decrypt and can carry out to decryption data, i.e., plaintext data. 

[0105] And after a decryption of encryption data is completed, the started program is 
eliminated. For this reason, without the program for a decryption of a plaintext condition 
remaining, even after carrying out decryption processing, the safety of the program for a 
decryption is secured and the safety of data is also secured as a result. Therefore, it is not 
necessary to take out the storage which has memorized the program for decryption processing 
from a storage area for every decryption processing, and to do the activity set and loaded to an 
information processor 2, and a decryption can be done efficiently. 

[0106] Moreover, since it is cleared when the decrypted data also remain on the activity 
memory area, safety is more high. Furthermore, a key (the 2nd decryption key) is decrypted 
with a just user's dark / decryption key temporarily [ which was enciphered ] which is 
contained in encryption data. 

[0107] By doing in this way, the momentary key (the 2nd decryption key) for decrypting 
encryption data is obtained, and only a just user can decrypt encryption data appropriately and 
can get plaintext data. It separates to IC card 30 as attachment [ the information processor 2 as 
the main frame, and this information processor 2 ] which it is constituted by another object, 
and it connects with arbitration in signal, or can be cut to an information processor 2, and this 
examples are consisted of Moreover, an information processor 2 While it has each program 
of program encryption storage processing, program read-out processing, program starting 
processing, and program elimination processing and IC card 30 memorizes a just user's dark / 
decryption key It considers as the configuration equipped with the program of program 
decryption processing and key decryption processing. 

[0108] Thus, since it is constituted, since the program of a user's just dark / decryption key, 
program decryption processing, and key decryption processing exists, the safety of the 
program of the dark / decryption key corresponding to the just user, and program decryption 
processing and the program of key decryption processing is secured, and the safety of data is 
further secured to an IC card 30 side. 

[0109] Next, modification processing of the 2nd enciphered dark decryption processing 
program which is memorized by the hard disk drive unit 18 is explained. First, after an 
information processor 2 carries out power-source ON, a user sets the received magneto-optic 
disk to Magnetic-Optical disk drive 14, and sets self IC card 30 to the IC card reader 26. 

[01 10] An initial program is started in an information processor 2. The processing in this case 
is as having explained step S240 from step SI 00 on the occasion of data encryption or a 
decryption. Also in IC card 30, it is the same. Of course, if users differ, since IC cards 30 also 



differ, ID which receives at step SI 70 also differs, and dark differs also from the 2nd [ which 
is transmitted to IC card 30 at step S210 ] enciphered decryption processing program. 

[0111] For example, if a user's ID is IDc, as for the program by which it is transmitted to IC 
card 30, consequently the 2nd enciphered dark / decryption processing program Pr3 are 
started by step S240 from the 2nd enciphered dark / decryption processing program Pr3 
corresponding, the 2nd dark / decryption processing program Pr3 will be performed. If the 
2nd dark / decryption processing program Pr3 are started at step S240, the display of a 
processing menu will be first made at step SI 010 of the flow chart shown in drawing 9 . 

[0112] If a user chooses program modification processing here, processing of step SI 300 will 
be started. Program modification processing is shown in the flow chart of drawing 12 . First, 
edit processing of the 2nd dark / decryption processing program is made (SI 3 02). For 
example, the 2nd dark / decryption processing program currently expressed in hexadecimals 
are disassembled, it expresses in assembly language, and edit by the keyboard 12 is enabled. 
If edit is completed, the contents after edit will be assembled and it will be changed into the 
program which can be performed. 

[01 13] In addition, in this edit processing, the processing replaced with other already changed 
[ only ] programs is also included. Therefore, the program created with other equipments can 
newly be incorporated as the 2nd dark / decryption processing program. Moreover, in this edit 
processing, modification of data, such as a numeric value only set up into the program and a 
character string, is also included. 

[01 14] Next, the 2nd dark / decryption processing program after edit are transmitted to an IC 
card 30 side (SI 3 04), and it becomes the receiving waiting (SI 306) of the 2nd enciphered 
dark / decryption processing program. In the condition of having repeated steps S590, S595, 
and S600 in the IC card 30 side, if the 2nd dark / decryption processing program which has 
not been enciphered are received, an affirmation judging will be carried out at step S600, and 
the 2nd dark / decryption processing program will be enciphered program encryption 
processing program Prl2 with dark / decryption key of the just user of IC card 30 (S650). 

[0115] Next, this the 2nd enciphered dark / decryption processing program are transmitted to 
an information processor 2 (S660), and it returns to processing of step S500. In an 
information-processor 2 side, since the 2nd enciphered dark / decryption processing program 
were received, an affirmation judging is carried out at step SI 306, the 2nd dark / decryption 
processing program enciphered next are contained to a hard disk drive unit 18, and the disk 
address is entered in the program address Pr 3 to which it was made to correspond as IDc 
among user ID-program address tables (SI 308). 

[0116] In this way, program modification processing is ended. Henceforth, step SI 500 is 
processed and it returns to an initial program. In an initial program, processing of step S250 is 
performed, the 2nd dark / decryption processing program which exists on RAM8 are cleared, 
and it returns to processing of step SI 10. 

[01 17] As mentioned above, since the program modification processing ( drawing 9 , drawing 
12 ) started with the information processor 2 of this example can change the contents of the 
2nd dark / decryption processing program with which it was enciphered only for the users by 
the just user, it becomes possible [ dark/decrypting ] with a different algorithm for every user 
of the, or the different set point (when the data in a program are changed). 

[0118] Therefore, also when changing the program for every user and one person's dark / 
decryption algorithm are analyzed by the third person, it is not analyzed by coincidence to all 
the members 1 program. Moreover, by program modification processing, when analyzed, when 
a just user changes a program, safety can be secured about future information. 



[0119] Moreover, in this example, even if it leaves an information processor 2 as a user is 
processing since the 2nd dark / decryption processing program which the 2nd dark / 
decryption processing program are ended by time out treatment (SI 106, SI 206), and 
processing of step S250 ** is performed, and exists on RAM8 are cleared when alter 
operation is not performed, the analysis and the alteration by the third person can be 
prevented. As long as actuation is no longer performed in the middle of edit also at step 
SI 302, the 2nd dark / decryption processing program may be ended. 

[0120] Moreover, in an information-processor 2 side, since the data encryption for [ of the 
amount of data / large ] encryption or decryption processing is performed and encryption or 
decryption processing of a key is performed in an IC card 30 side the small program of the 
amount of data, and temporarily, as the whole processing, it can carry out to a high speed. 
Moreover, it can consider as a configuration small as IC card 30, and cheap. 

[0121] Moreover, as shown in drawing 13 , only a key is enciphered temporarily 
corresponding to the number of those who permit a decryption, and even if the amount of data 
which keeps, carries or communicates from one actual encryption data existing has many 
those who permit a decryption, it does not turn into a huge day large quantity, but can save 
memory, a storage, or communication link time amount. 

[0122] In this example, a hard disk drive unit 18 corresponds to a program encryption storage 
means. Step S210 corresponds to the processing as a program read-out means, and step S570 
corresponds to the processing as a program decryption means. Step S240 corresponds to the 
processing as a program starting means, and step S250 corresponds to the processing as a 
program elimination means. Step S610 corresponds to the processing as a key encryption 
means, step SI 160 corresponds to the processing as a key addition means, and step S630 
corresponds to the processing as a key decryption means. 

[0123] Although the example which carried out [other] **** was an information secrecy 
processing system which decrypts the data which enciphered data or were enciphered and is 
returned to plaintext data Furthermore, when an information processor 2 is equipped with a 
network control unit and a modem Like said example, a just user enciphers data and transmits 
to the other party through a communication line. Moreover, you may constitute as information 
secrecy communication system which a user (decryption candidate) just like said example 
decrypts the encryption data which the other party has transmitted through a communication 
line, and obtains them as plaintext data. 

[0124] Furthermore, by having the image reader of a manuscript, and the recording apparatus 
of an image, it constitutes in this information secrecy communication system as facsimile 
apparatus, and is good for it also as an object of encryption or a decryption like said example 
in the image data of that manuscript. Although the just user and the decryption candidate were 
specified by ID in said example, it may not be ID, or a candidate name is sufficient, and both 
ID and a candidate name are sufficient. 

[0125] Although a just user's dark / decryption key memorized by IC card 30 were used for 
encryption and a decryption in said example, at the time of a decryption, a private key may be 
used using a public key at the time of encryption. Therefore, the other party encryption keys 
Kl, K2, — , Kn with which a just user permits a decryption of data may be public keys. 

[0126] Moreover, although ID1 and ID2 of the other party who permits a decryption, --, the 
encryption keys Kl and K2 corresponding to it and — were memorized by the backup RAM 
38 of IC card 30, direct, such ID, and the encryption key K may not be memorized, but you 
may make it be a degree. 

[0127] That is, when ID of the other party who builds a secret algorithm in backup RAM 38, 
and permits a decryption is inputted, it is good also as a configuration which generates the 



encryption key K which corresponds in data processing according to the algorithm. It 
becomes saving of memory when there are much those who permit a decryption, since an 
encryption key can be obtained from much ID only with one algorithm even if it does not 
memorize two or more encryption keys if it is made this configuration. 

[0128] The configuration which generates a key is applied from this ID also to dark / 
decryption key of the just user of IC card 30 by data processing, and you may make it 
generate dark / decryption key from a just user's ID. Moreover, since a program, each key, 
etc. are kept to backup RAM 38 and a program, a key, etc. will be eliminated if the switch 
which is interlocked with sheathing and becomes off at the time of sheathing disconnection is 
used between a backup power supply and backup RAM 38, and sheathing is opened, IC card 
30 is more desirable on insurance. Moreover, a program, a key, etc. may be memorized to 
EEPROM instead of backup RAM 38. In this case, if the switch which is interlocked with 
sheathing and serves as ON at the time of sheathing disconnection is formed between a power 
source and EEPROM, and sheathing is opened, a current will flow and a program, a key, etc. 
will be eliminated. 

[0129] The initial program may be stored in ROM6 instead of a hard disk drive unit 18 in said 
example. 

CLAIMS 



[Claim(s)] 

[Claim 1] In the encryption system which enciphers data by encryption processing based on a 
program A program encryption storage means to memorize said program in the condition of 
having enciphered with the 1st encryption key corresponding to a user, The program read-out 
means which reads said program enciphered with the 1st encryption key corresponding to a 
user from the inside of said program encryption storage means, By starting the program 
decrypted by program decryption means to decrypt said program read by said program read- 
out means with the decryption key corresponding to a user, and said program decryption 
means The program starting means which is made to encipher the data for encryption with the 
2nd encryption key, and is used as encryption data, The encryption system characterized by 
having a program elimination means to eliminate said program which was decoded and 
became a candidate for starting when the data encryption for encryption was completed with 
said program starting means. 

[Claim 2] Furthermore, the encryption system [ equipped with a key encryption means to 
encipher said 2nd encryption key with the 3rd encryption key, and a key addition means to 
add said 2nd encryption key enciphered with said key encryption means to said encryption 
data ] according to claim 1. 

[Claim 3] The encryption system according to claim 2 with which said key addition means is 
realized as a function of said program. 

[Claim 4] The encryption system according to claim 1 to 3 with which said program asks for 
the 2nd encryption key by the operation. 

[Claim 5] The main frame and this main frame are the encryption system according to claim 1 
with which it consists of attachment which it is constituted by another object, and it connects 
with arbitration in signal, or can be cut to said main frame, and said main frame is equipped 
with said program encryption storage means, said program read-out means, said program 
starting means, and said program elimination means, and it is equipped with said program 



decryption means while said attachment memorizes the decryption key corresponding to said 
user. 

[Claim 6] It consists of attachment [ the main frame and this main frame ] which it is 
constituted by another object, and it connects with arbitration in signal, or can be cut to said 
main frame. Said main frame Said program encryption storage means, said program read-out 
means, The encryption system according to claim 3 with which it has said program decryption 
means, said program starting means, and said program elimination means, and it is equipped 
with said key encryption means while said attachment memorizes said 3rd encryption key. 

[Claim 7] It consists of attachment [ the main frame and this main frame ] which it is 
constituted by another object, and it connects with arbitration in signal, or can be cut to said 
main frame. Said main frame Said program encryption storage means, said program read-out 
means, The encryption system according to claim 3 with which it has said program starting 
means and said program elimination means, and it is equipped with said program decryption 
means and said key encryption means while said attachment memorizes the decryption key 
corresponding to said user, and said 3rd encryption key. 

[Claim 8] The encryption system according to claim 6 or 7 which said attachment memorizes 
as a list with which the decryption was corresponded in said 3rd encryption key with a 
person's Control Code to permit. 

[Claim 9] The encryption system according to claim 5 to 7 which generates said decryption 
key or said 3rd encryption key by the operation using Control Code when said attachment did 
not carry out immediate memory of said decryption key or said 3rd encryption key but said 
decryption key or said 3rd encryption key was needed. 

[Claim 10] The encryption system according to claim 1 to 9 with which said program has the 
function to stop self processing and to perform processing of said program elimination means 
when the next alter operation is not performed by the user within predetermined time. 

[Claim 1 1] In the decryption system which decrypts encryption data by decryption processing 
based on a program A program encryption storage means to memorize said program in the 
condition of having enciphered with the 1 st encryption key corresponding to a user, The 
program read-out means which reads said program enciphered with the 1st encryption key 
corresponding to a user from the inside of said program encryption storage means, By starting 
said program decrypted by program decryption means to decrypt said program read by said 
program read-out means with the decryption key corresponding to a user, and said program 
decryption means The program starting means which is made to decrypt encryption data with 
the 2nd decryption key, and is used as decryption data, The decryption system characterized 
by having a program elimination means to eliminate said program which was decrypted and 
became a candidate for starting when the decryption of encryption data was completed with 
said program starting means. 

[Claim 12] Furthermore, the decryption system [ equipped with a key decryption means to 
decrypt the enciphered 2nd decryption key which is contained in said encryption data with the 
decryption key corresponding to a user ] according to claim 11. 

[Claim 13] The main frame and this main frame are the decryption system according to claim 
1 1 by which it consists of attachment which it is constituted by another object, and it connects 
with arbitration in signal, or can be cut to said main frame, and said main frame is equipped 
with said program encryption storage means, said program read-out means, said program 
starting means, and said program elimination means, and it is equipped with said program 
decryption means while said attachment memorizes the decryption key corresponding to said 
user. 



[Claim 14] It consists of attachment [ the main frame and this main frame ] which it is 
constituted by another object, and it connects with arbitration in signal, or can be cut to said 
main frame. Said main frame Said program encryption storage means, said program read-out 
means, The decryption system according to claim 12 by which it has said program decryption 
means, said program starting means, and said program elimination means, and it is equipped 
with said key decryption means while said attachment memorizes the decryption key 
corresponding to said user. 

[Claim 15] It consists of attachment [ the main frame and this main frame ] which it is 
constituted by another object, and it connects with arbitration in signal, or can be cut to said 
main frame. While it has said program encryption storage means, said program read-out 
means, said program starting means, and said program elimination means and said attachment 
memorizes the decryption key corresponding to said user, said main frame A decryption 
system [ equipped with said program decryption means and said key decryption means ] 
according to claim 12. 

[Claim 16] The decryption system according to claim 13 to 15 which generates said 
decryption key by the operation using Control Code when said attachment did not carry out 
immediate memory of said decryption key but said decryption key was needed. 

[Claim 17] The decryption system according to claim 11 to 16 by which said program has the 
function to stop self processing and to perform processing of said program elimination means 
when the next alter operation is not performed by the user within predetermined time. 

[Claim 18] Claims 1-10 are the information secrecy processing systems with which it comes 
to put the encryption system and the decryption system according to claim 11 to 17 of a 
publication together either. 

[Claim 19] Claims 1-10 equipped with a transmitting means to transmit said encryption data 
to the other party through a communication line are the encryption systems of a publication 
either. 

[Claim 20] Claims 11-17 equipped with a receiving means to receive said encryption data 
through a communication line are the decryption systems of a publication either. 

[Claim 21] Information secrecy communication system with which it comes to put an 
encryption system and a decryption system according to claim 20 according to claim 19 
together. 
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